Bump Aspire.Hosting.NodeJs and 12 others #104

dependabot · 2025-10-24T07:24:27Z

Updated Aspire.Hosting.NodeJs from 9.2.1 to 9.5.2.

Release notes

Sourced from Aspire.Hosting.NodeJs's releases.

9.5.2 What's Changed

[release/9.5] Revert SQL Server container image tag from 2025-latest to 2022-latest for Mac ARM compatibility by @github-actions[bot] in [release/9.5] Revert SQL Server container image tag from 2025-latest to 2022-latest for Mac ARM compatibility dotnet/aspire#11908
[release/9.5] Ensure OutputPath is created in ResourceContainerImageBuilder by @github-actions[bot] in [release/9.5] Ensure OutputPath is created in ResourceContainerImageBuilder dotnet/aspire#11886
[release/9.5] Add configuration to suppress unsecured telemetry message in dashboard by @github-actions[bot] in [release/9.5] Add configuration to suppress unsecured telemetry message in dashboard dotnet/aspire#11954
[release/9.5] Update dependencies from https://github.com/microsoft/usvc-apiserver build 0.17.3 by @danegsta in [release/9.5] Update dependencies from https://github.com/microsoft/usvc-apiserver build 0.17.3 dotnet/aspire#12032
[release/9.5] Multi-target RabbitMQ and Redis client libraries by @eerhardt in [release/9.5] Multi-target RabbitMQ and Redis client libraries dotnet/aspire#12138
Backport PR #11951: Add noProfileSwitch to run command in DotNetCliRunner by @Copilot in Backport PR #11951: Add noProfileSwitch to run command in DotNetCliRunner dotnet/aspire#11959
Bump patch version to 9.5.2 by @Copilot in Bump patch version to 9.5.2 dotnet/aspire#12139

Full Changelog: dotnet/aspire@v9.5.1...v9.5.2

9.5.1 What's Changed

[release/9.5]: Add proper launch profile support to the VS Code extension by @Copilot in [release/9.5]: Add proper launch profile support to the VS Code extension dotnet/aspire#11617
[release/9.5] Cherry-pick extension build and sign pipeline setup by @Copilot in [release/9.5] Cherry-pick extension build and sign pipeline setup dotnet/aspire#11618
[release/9.5] Fix globalPackagesFolder path to be platform-agnostic in NuGetConfigMerger by @github-actions[bot] in [release/9.5] Fix globalPackagesFolder path to be platform-agnostic in NuGetConfigMerger dotnet/aspire#11626
[release/9.5] Fix flashing console windows when Docker processes are launched on Windows by @github-actions[bot] in [release/9.5] Fix flashing console windows when Docker processes are launched on Windows dotnet/aspire#11615
[release/9.5] Display help text for GenAI sensitive data when no messages by @github-actions[bot] in [release/9.5] Display help text for GenAI sensitive data when no messages dotnet/aspire#11668
[release/9.5] Allow .NET 10 prerelease versions for single-file apphost scenarios by @github-actions[bot] in [release/9.5] Allow .NET 10 prerelease versions for single-file apphost scenarios dotnet/aspire#11616
[release/9.5] Update Aspire package versions from 9.5.0 to 9.5.1 by @Copilot in [release/9.5] Update Aspire package versions from 9.5.0 to 9.5.1 dotnet/aspire#11721
[release/9.5] Fix DevTunnels in DevContainers and Codespaces by @github-actions[bot] in [release/9.5] Fix DevTunnels in DevContainers and Codespaces dotnet/aspire#11730
[release/9.5] Don't require gen_ai.system attribute on span events by @github-actions[bot] in [release/9.5] Don't require gen_ai.system attribute on span events dotnet/aspire#11735
[release/9.5] Update Microsoft.Extensions.AI packages, use content env var by @github-actions[bot] in [release/9.5] Update Microsoft.Extensions.AI packages, use content env var dotnet/aspire#11726
[release/9.5] Fix ParameterProcessor to use ExecutionContextOptions and skip excluded resources by @github-actions[bot] in [release/9.5] Fix ParameterProcessor to use ExecutionContextOptions and skip excluded resources dotnet/aspire#11782
[release/9.5] Update retry in Kusto emulator actions to handle any non-permanent error by @github-actions[bot] in [release/9.5] Update retry in Kusto emulator actions to handle any non-permanent error dotnet/aspire#11779
[release/9.5] Fix CommandLineArgsCallbackContext ExecutionContext in AzureResourcePreparer and prevent WithVSCodeDebugSupport execution in publish mode by @github-actions[bot] in [release/9.5] Fix CommandLineArgsCallbackContext ExecutionContext in AzureResourcePreparer and prevent WithVSCodeDebugSupport execution in publish mode dotnet/aspire#11788
[release/9.5] Fix GenAI visualizer when span is missing peer attribute by @JamesNK in [release/9.5] Fix GenAI visualizer when span is missing peer attribute dotnet/aspire#11765
[release/9.5] Support parameter names with dashes resolved from underscore configuration by @github-actions[bot] in [release/9.5] Support parameter names with dashes resolved from underscore configuration dotnet/aspire#11802
[release/9.5] Adapt OpenAI health check based on endpoint configuration by @github-actions[bot] in [release/9.5] Adapt OpenAI health check based on endpoint configuration dotnet/aspire#11792

Full Changelog: dotnet/aspire@v9.5.0...v9.5.1

9.5.0

We are excited to share that our 9.5.0 release of Aspire has shipped! All of the packages are available in NuGet.org now. Head over to https://learn.microsoft.com/en-us/dotnet/aspire/whats-new/dotnet-aspire-9.5 to find what's new in 9.5.0!

New Contributors

@benwitmanmsft made their first contribution in Add missing end quote for Outputs declaration dotnet/aspire#10289
@MattKotsenas made their first contribution in Add xmldocs to generated metadata projects dotnet/aspire#9868
@danespinosa made their first contribution in Update contributing.md dotnet/aspire#10394
@jnyrup made their first contribution in Do not match pipe as port separator dotnet/aspire#10884
@ericstj made their first contribution in Update Azure.AI.OpenAI dotnet/aspire#10928
@jeremy-vm made their first contribution in Bump azurite to latest release for azure storage emulator dotnet/aspire#10972
@Steinblock made their first contribution in fix for wrong OpenAIClientOptions used with keyed OpenAIClient(s) dotnet/aspire#11003
@brettcannon made their first contribution in Fix grammar in AddX method responsibilities docs dotnet/aspire#11014
@twsouthwick made their first contribution in Allow requiring OpenTelemetry protocol if needed dotnet/aspire#10507
@KirillOsenkov made their first contribution in Make copying project templates incremental dotnet/aspire#11164
@CaitieM20 made their first contribution in Caitie/update test templates dotnet/aspire#10662

Full Changelog: dotnet/aspire@v9.4.0...v9.5.0

9.4.2 What's Changed

[release/9.4] Simplify Aspire CLI project name validation to only reject path separators by @github-actions[bot] in [release/9.4] Simplify Aspire CLI project name validation to only reject path separators dotnet/aspire#10832
[release/9.4] External Services with URL Parameter fails to generate manifests by @github-actions[bot] in [release/9.4] External Services with URL Parameter fails to generate manifests dotnet/aspire#10806
[release/9.4] Always update resource list in console logs after hidden bool changes by @github-actions[bot] in [release/9.4] Always update resource list in console logs after hidden bool changes dotnet/aspire#10738
[release/9.4] serve blazor.web.js from wwwroot by @JamesNK in [release/9.4] serve blazor.web.js from wwwroot dotnet/aspire#10990
Branding updates for 9.4.2 by @joperezr in Branding updates for 9.4.2 dotnet/aspire#11026
[release/9.4] Port Fix creating projects with GB18030 chars by @danmoseley in [release/9.4] Port Fix creating projects with GB18030 chars dotnet/aspire#11032
[release/9.4] Fix Azure AI Foundry resource name by @github-actions[bot] in [release/9.4] Fix Azure AI Foundry resource name dotnet/aspire#11038
[release/9.4] Fixed properties override when publishing an update in external service by @github-actions[bot] in [release/9.4] Fixed properties override when publishing an update in external service dotnet/aspire#10824

Full Changelog: dotnet/aspire@v9.4.1...v9.4.2

9.4.1 What's Changed

[release/9.4] Mark Aspire.CLI as stable by @joperezr in [release/9.4] Mark Aspire.CLI as stable dotnet/aspire#10724
[release/9.4] aspire config set writes appHostPath to ~/.aspire/settings.json globally, causing incorrect path resolution by @github-actions[bot] in [release/9.4] aspire config set writes appHostPath to ~/.aspire/settings.json globally, causing incorrect path resolution dotnet/aspire#10703
[release/9.4] Update dependencies from microsoft/usvc-apiserver by @danegsta in [release/9.4] Update dependencies from microsoft/usvc-apiserver dotnet/aspire#10814
[release/9.4] Fix grid scrolling bugs by @github-actions[bot] in [release/9.4] Fix grid scrolling bugs dotnet/aspire#10861
Bump package versions to 9.4.1 in project files by @joperezr in Bump package versions to 9.4.1 in project files dotnet/aspire#10891

Full Changelog: dotnet/aspire@v9.4.0...v9.4.1

9.4.0

We are excited to share that our 9.4.0 release of Aspire has shipped! All of the packages are available in NuGet.org now. Head over to https://learn.microsoft.com/en-us/dotnet/aspire/whats-new/dotnet-aspire-9.4 to find what's new in 9.4.0!

What's Changed

API review: Add Services property to ResourceEndpointsAllocatedEvent by @DamianEdwards in API review: Add Services property to ResourceEndpointsAllocatedEvent dotnet/aspire#9270
Fix visibility updates during resource upserts by @adamint in Fix visibility updates during resource upserts dotnet/aspire#9264
Accept null value in Redis WithPassword to ensure password dosen't set in redis-server by @Alirexaa in Accept null value in Redis WithPassword to ensure password dosen't set in redis-server dotnet/aspire#9278
Make sure the publisher example supports azd by @davidfowl in Make sure the publisher example supports azd dotnet/aspire#9277
API review: WithHostPort should accept null for port param by @Alirexaa in API review: WithHostPort should accept null for port param dotnet/aspire#9282
Refactor database explorer resource builders to not prefix their names the name of the first resource they are added to. by @paulomorgado in Refactor database explorer resource builders to not prefix their names the name of the first resource they are added to. dotnet/aspire#8237
Test that ensures legacy dashboard token env var is honored by @DamianEdwards in Test that ensures legacy dashboard token env var is honored dotnet/aspire#9296
Refactor solution file from .sln to .slnx format and update related d… by @davidfowl in Refactor solution file from .sln to .slnx format and update related d… dotnet/aspire#9295
Minor dashboard improvements and clean up by @JamesNK in Minor dashboard improvements and clean up dotnet/aspire#9301
Minor improvements to resource changed log by @JamesNK in Minor improvements to resource changed log dotnet/aspire#9303
Fix Blazor error logging to telemetry by @JamesNK in Fix Blazor error logging to telemetry dotnet/aspire#9304
Don't throw from component telemetry context dispose if not initialized by @JamesNK in Don't throw from component telemetry context dispose if not initialized dotnet/aspire#9306
[CI] Add PR validation on macOS by @radical in [CI] Add PR validation on macOS dotnet/aspire#9287
Localized file check-in by OneLocBuild Task: Build definition ID 1309: Build ID 2709142 by @dotnet-bot in Localized file check-in by OneLocBuild Task: Build definition ID 1309: Build ID 2709142 dotnet/aspire#9302
Ignore case on FormatDateTime_WithMilliseconds_NewZealandCulture by @adamint in Ignore case on FormatDateTime_WithMilliseconds_NewZealandCulture dotnet/aspire#9316
Changing default SKU for App Service Plan to P0V3 by @ShilpiRachna1 in Changing default SKU for App Service Plan to P0V3 dotnet/aspire#9280
Branding updates for 9.4 by @joperezr in Branding updates for 9.4 dotnet/aspire#9331
Increase retry time in AppBar_Change_Theme_ReloadPage by @adamint in Increase retry time in AppBar_Change_Theme_ReloadPage dotnet/aspire#9317
Update xUnit.v3 to support MTP tests by @peterwald in Update xUnit.v3 to support MTP tests dotnet/aspire#9261
[main] Update dependencies from microsoft/usvc-apiserver by @dotnet-maestro[bot] in [main] Update dependencies from microsoft/usvc-apiserver dotnet/aspire#9333
Add tracing support for Azure App Configuration component by @zhiyuanliang-ms in Add tracing support for Azure App Configuration component dotnet/aspire#9323
Revert "Update xUnit.v3 to support MTP tests (#9261)" by @radical in Revert "Update xUnit.v3 to support MTP tests (#9261)" dotnet/aspire#9336
Remove the workaround to explicitly set the container runtime for tests now that the orchestrator is updated by @danegsta in Remove the workaround to explicitly set the container runtime for tests now that the orchestrator is updated dotnet/aspire#9339
[Automated] Update API Surface Area by @github-actions[bot] in [Automated] Update API Surface Area dotnet/aspire#8736
Revert "Revert "Update xUnit.v3 to support MTP tests (#9261)" (#9336)" by @radical in Revert "Revert "Update xUnit.v3 to support MTP tests (#9261)" (#9336)" dotnet/aspire#9337
TestsReportGenerator: Always show the error message, and truncate only the stdout by @radical in TestsReportGenerator: Always show the error message, and truncate only the stdout dotnet/aspire#9335
[CI] Fix azdo builds for main by @radical in [CI] Fix azdo builds for main dotnet/aspire#9338
[main] Update dependencies from microsoft/usvc-apiserver by @dotnet-maestro[bot] in [main] Update dependencies from microsoft/usvc-apiserver dotnet/aspire#9347
Fully qualify OutputPath for PublishingContext by @captainsafia in Fully qualify OutputPath for PublishingContext dotnet/aspire#9351
Fix typo in doccomment in ContainerResourceBuilderExtensions.cs by @KuraiAndras in Fix typo in doccomment in ContainerResourceBuilderExtensions.cs dotnet/aspire#9342
Update health check to ensure blob containers created at right time by @RussKie in Update health check to ensure blob containers created at right time dotnet/aspire#9159
Re-apply quarantined test for validation by @sebastienros in Re-apply quarantined test for validation dotnet/aspire#9364
Update telemetry doc for AzureAppConfiguration by @sebastienros in Update telemetry doc for AzureAppConfiguration dotnet/aspire#9365
Enable MTP tests via MSBuild property by @captainsafia in Enable MTP tests via MSBuild property dotnet/aspire#9361
catch json error by @danmoseley in catch json error dotnet/aspire#9369
Refactor a common TempDirectory test class by @eerhardt in Refactor a common TempDirectory test class dotnet/aspire#9370
Centralize Verify convention by @sebastienros in Centralize Verify convention dotnet/aspire#9371
Update Aspire to stable Microsoft.Extensions.AI.Abstractions by @stephentoub in Update Aspire to stable Microsoft.Extensions.AI.Abstractions dotnet/aspire#9356
Update RunCommand.cs by @IEvangelist in Update RunCommand.cs dotnet/aspire#9360
Add support for copying existing files via WithContainerFiles API by @danegsta in Add support for copying existing files via WithContainerFiles API dotnet/aspire#8908
Do not fail on partial trust warning. by @mitchdenny in Do not fail on partial trust warning. dotnet/aspire#9384
markdown lint by @danmoseley in markdown lint dotnet/aspire#9389
Merge branch release/9.3 into main by @joperezr in Merge branch release/9.3 into main dotnet/aspire#9394
Fix failure in MongoDbFunctionalTests.VerifyWithInitFiles by @danegsta in Fix failure in MongoDbFunctionalTests.VerifyWithInitFiles dotnet/aspire#9391
Ensure all grid columns have tooltips by @adamint in Ensure all grid columns have tooltips dotnet/aspire#9401
Remove test from quarantine by @danegsta in Remove test from quarantine dotnet/aspire#9402
copilot setup steps by @danmoseley in copilot setup steps dotnet/aspire#9409
... (truncated)

9.3.2 What's Changed

[release/9.3] Fix SqlServer PowerShell module version to avoid breaking changes in 22.4.5.1 by @sebastienros in [release/9.3] Fix SqlServer PowerShell module version to avoid breaking changes in 22.4.5.1 dotnet/aspire#9958
Bumping patch version for 9.3.2 by @joperezr in Bumping patch version for 9.3.2 dotnet/aspire#9963

Full Changelog: dotnet/aspire@v9.3.1...v9.3.2

9.3.1 What's Changed

[release/9.3] fix markdown lint in release/9.3 by @danmoseley in [release/9.3] fix markdown lint in release/9.3 dotnet/aspire#9536
[release/9.3] branding for 9.3.1 by @danmoseley in [release/9.3] branding for 9.3.1 dotnet/aspire#9539
[release/9.3] Fix Blob Container Connection String Format Exception by @github-actions in [release/9.3] Fix Blob Container Connection String Format Exception dotnet/aspire#9496
[release/9.3] Force SqlDatabase resource api version by @sebastienros in [release/9.3] Force SqlDatabase resource api version dotnet/aspire#9535
[release/9.3] Use ProcessSpec for invoking dotnet publish by @github-actions in [release/9.3] Use ProcessSpec for invoking dotnet publish dotnet/aspire#9561
[release/9.3] Initialize telemetry context in UpdateTelemetryProperties if not already initialized by @JamesNK in [release/9.3] Initialize telemetry context in UpdateTelemetryProperties if not already initialized dotnet/aspire#9602
[release/9.3] Fix the state propagation for azure resources by @github-actions in [release/9.3] Fix the state propagation for azure resources dotnet/aspire#9687
[release/9.3] Skip role assignment handling for emulators (#9705) by @eerhardt in [release/9.3] Skip role assignment handling for emulators (#9705) dotnet/aspire#9716

Full Changelog: dotnet/aspire@v9.3.0...v9.3.1

9.3.0

We are excited to share that our 9.3.0 release of .NET Aspire has shipped! All of the packages are available in NuGet.org now. Find out what is new here.

What's Changed

Davidfowl/fix emulators by @davidfowl in Davidfowl/fix emulators dotnet/aspire#8406
Add NO-MERGE label to auto created api-diff PR by @Alirexaa in Add NO-MERGE label to auto created api-diff PR dotnet/aspire#8479
Branding updates for 9.3 by @joperezr in Branding updates for 9.3 dotnet/aspire#8505
Remove Roslyn workaround by @eerhardt in Remove Roslyn workaround dotnet/aspire#8509
[tests] Quarantine additional tests for issues open against them by @radical in [tests] Quarantine additional tests for issues open against them dotnet/aspire#8508
Interactive prompting for aspire new by @mitchdenny in Interactive prompting for aspire new dotnet/aspire#8520
Rename IKeyVaultResource and IKeyVaultSecretReference by @eerhardt in Rename IKeyVaultResource and IKeyVaultSecretReference dotnet/aspire#8532
Remove AzureContainerAppEnvironmentResource BicepOutputReferences from public API by @eerhardt in Remove AzureContainerAppEnvironmentResource BicepOutputReferences from public API dotnet/aspire#8529
[outerloop] Run with -ci to match the other test runs on CI by @radical in [outerloop] Run with -ci to match the other test runs on CI dotnet/aspire#8526
Move database script annotations to their respective projects by @sebastienros in Move database script annotations to their respective projects dotnet/aspire#8535
Remove null/nullable parameter from DistributedApplicationExecutionContext by @sebastienros in Remove null/nullable parameter from DistributedApplicationExecutionContext dotnet/aspire#8533
Update tests-outerloop.yml run frequency by @RussKie in Update tests-outerloop.yml run frequency dotnet/aspire#8540
Improve path prompt for aspire new command. by @mitchdenny in Improve path prompt for aspire new command. dotnet/aspire#8542
Retry resource stopping operation by @karolz-ms in Retry resource stopping operation dotnet/aspire#8541
Adding descriptions to all args/options in CLI. by @mitchdenny in Adding descriptions to all args/options in CLI. dotnet/aspire#8544
CLI publishing failure fixes. by @mitchdenny in CLI publishing failure fixes. dotnet/aspire#8551
[tests] Quarantine, and un-quarantine some tests by @radical in [tests] Quarantine, and un-quarantine some tests dotnet/aspire#8545
[CI] Use an in-repo copy of devcerts installation script by @radical in [CI] Use an in-repo copy of devcerts installation script dotnet/aspire#8548
Change Redis Insights to use environment variables for preconfigured database connections by @Alirexaa in Change Redis Insights to use environment variables for preconfigured database connections dotnet/aspire#8524
Switch to null as default for owner and group in WithContainerFiles by @danegsta in Switch to null as default for owner and group in WithContainerFiles dotnet/aspire#8557
Refactor AzurePublisher to enable usage in downstream publishers by @sunandabalu in Refactor AzurePublisher to enable usage in downstream publishers dotnet/aspire#8507
Split out build step in publisher. by @mitchdenny in Split out build step in publisher. dotnet/aspire#8567
PublishingActivityProgressReporter fixes by @mitchdenny in PublishingActivityProgressReporter fixes dotnet/aspire#8571
[main] Update dependencies from dotnet/arcade by @dotnet-maestro in [main] Update dependencies from dotnet/arcade dotnet/aspire#8579
Update nightly references to daily by @afscrome in Update nightly references to daily dotnet/aspire#8586
Add RPC protocol compat check. by @mitchdenny in Add RPC protocol compat check. dotnet/aspire#8577
Return correct exit code from build.ps1 by @RussKie in Return correct exit code from build.ps1 dotnet/aspire#8582
Constrain test-only dependencies to /tests folder by @RussKie in Constrain test-only dependencies to /tests folder dotnet/aspire#8576
Rename IAzureKeyVaultResource.GetSecretReference to GetSecret by @eerhardt in Rename IAzureKeyVaultResource.GetSecretReference to GetSecret dotnet/aspire#8598
mysql test timeouts by @danmoseley in mysql test timeouts dotnet/aspire#8536
Fix --watch hangs. by @mitchdenny in Fix --watch hangs. dotnet/aspire#8585
update to include all d.p.p by @danmoseley in update to include all d.p.p dotnet/aspire#8603
Address feedback to WithUrls() by @DamianEdwards in Address feedback to WithUrls() dotnet/aspire#8602
Fix a regression in endpoint resolution in environment variables by @davidfowl in Fix a regression in endpoint resolution in environment variables dotnet/aspire#8609
Disable OTEL telemetry in CLI if not a debug build. by @mitchdenny in Disable OTEL telemetry in CLI if not a debug build. dotnet/aspire#8612
AddAzureContainerAppEnvironment should use the environment name as a prefix by @eerhardt in AddAzureContainerAppEnvironment should use the environment name as a prefix dotnet/aspire#8606
Rename test env controlling and project test capabilities variables by @RussKie in Rename test env controlling and project test capabilities variables dotnet/aspire#8518
Look for shipping artifacts according to the build configuration by @RussKie in Look for shipping artifacts according to the build configuration dotnet/aspire#8616
[tests] Re-enable some quarantined tests that haven't been failing by @radical in [tests] Re-enable some quarantined tests that haven't been failing dotnet/aspire#8615
Follow up from azd naming change by @eerhardt in Follow up from azd naming change dotnet/aspire#8631
Fix existing resources with the azure publisher by @davidfowl in Fix existing resources with the azure publisher dotnet/aspire#8622
Introduce version selector for Aspire templates by @mitchdenny in Introduce version selector for Aspire templates dotnet/aspire#8625
Error handling for GetCapabilitiesAsync connection issues by @mitchdenny in Error handling for GetCapabilitiesAsync connection issues dotnet/aspire#8614
Obsolete AddAzureContainerAppsInfrastructure by @eerhardt in Obsolete AddAzureContainerAppsInfrastructure dotnet/aspire#8639
Add error handling for package updates in workflow by @joperezr in Add error handling for package updates in workflow dotnet/aspire#8390
Filter out tracing health endpoints in service defaults templates by @DamianEdwards in Filter out tracing health endpoints in service defaults templates dotnet/aspire#8643
Show neutral icon for container exiting with status code 0 by @adamint in Show neutral icon for container exiting with status code 0 dotnet/aspire#8477
... (truncated)

Commits viewable in compare view.

Updated Aspire.Microsoft.EntityFrameworkCore.SqlServer from 9.2.1 to 9.5.2.

Release notes

Sourced from Aspire.Microsoft.EntityFrameworkCore.SqlServer's releases.

9.5.2 What's Changed

[release/9.5] Revert SQL Server container image tag from 2025-latest to 2022-latest for Mac ARM compatibility by @github-actions[bot] in [release/9.5] Revert SQL Server container image tag from 2025-latest to 2022-latest for Mac ARM compatibility dotnet/aspire#11908
[release/9.5] Ensure OutputPath is created in ResourceContainerImageBuilder by @github-actions[bot] in [release/9.5] Ensure OutputPath is created in ResourceContainerImageBuilder dotnet/aspire#11886
[release/9.5] Add configuration to suppress unsecured telemetry message in dashboard by @github-actions[bot] in [release/9.5] Add configuration to suppress unsecured telemetry message in dashboard dotnet/aspire#11954
[release/9.5] Update dependencies from https://github.com/microsoft/usvc-apiserver build 0.17.3 by @danegsta in [release/9.5] Update dependencies from https://github.com/microsoft/usvc-apiserver build 0.17.3 dotnet/aspire#12032
[release/9.5] Multi-target RabbitMQ and Redis client libraries by @eerhardt in [release/9.5] Multi-target RabbitMQ and Redis client libraries dotnet/aspire#12138
Backport PR #11951: Add noProfileSwitch to run command in DotNetCliRunner by @Copilot in Backport PR #11951: Add noProfileSwitch to run command in DotNetCliRunner dotnet/aspire#11959
Bump patch version to 9.5.2 by @Copilot in Bump patch version to 9.5.2 dotnet/aspire#12139

Full Changelog: dotnet/aspire@v9.5.1...v9.5.2

9.5.1 What's Changed

[release/9.5]: Add proper launch profile support to the VS Code extension by @Copilot in [release/9.5]: Add proper launch profile support to the VS Code extension dotnet/aspire#11617
[release/9.5] Cherry-pick extension build and sign pipeline setup by @Copilot in [release/9.5] Cherry-pick extension build and sign pipeline setup dotnet/aspire#11618
[release/9.5] Fix globalPackagesFolder path to be platform-agnostic in NuGetConfigMerger by @github-actions[bot] in [release/9.5] Fix globalPackagesFolder path to be platform-agnostic in NuGetConfigMerger dotnet/aspire#11626
[release/9.5] Fix flashing console windows when Docker processes are launched on Windows by @github-actions[bot] in [release/9.5] Fix flashing console windows when Docker processes are launched on Windows dotnet/aspire#11615
[release/9.5] Display help text for GenAI sensitive data when no messages by @github-actions[bot] in [release/9.5] Display help text for GenAI sensitive data when no messages dotnet/aspire#11668
[release/9.5] Allow .NET 10 prerelease versions for single-file apphost scenarios by @github-actions[bot] in [release/9.5] Allow .NET 10 prerelease versions for single-file apphost scenarios dotnet/aspire#11616
[release/9.5] Update Aspire package versions from 9.5.0 to 9.5.1 by @Copilot in [release/9.5] Update Aspire package versions from 9.5.0 to 9.5.1 dotnet/aspire#11721
[release/9.5] Fix DevTunnels in DevContainers and Codespaces by @github-actions[bot] in [release/9.5] Fix DevTunnels in DevContainers and Codespaces dotnet/aspire#11730
[release/9.5] Don't require gen_ai.system attribute on span events by @github-actions[bot] in [release/9.5] Don't require gen_ai.system attribute on span events dotnet/aspire#11735
[release/9.5] Update Microsoft.Extensions.AI packages, use content env var by @github-actions[bot] in [release/9.5] Update Microsoft.Extensions.AI packages, use content env var dotnet/aspire#11726
[release/9.5] Fix ParameterProcessor to use ExecutionContextOptions and skip excluded resources by @github-actions[bot] in [release/9.5] Fix ParameterProcessor to use ExecutionContextOptions and skip excluded resources dotnet/aspire#11782
[release/9.5] Update retry in Kusto emulator actions to handle any non-permanent error by @github-actions[bot] in [release/9.5] Update retry in Kusto emulator actions to handle any non-permanent error dotnet/aspire#11779
[release/9.5] Fix CommandLineArgsCallbackContext ExecutionContext in AzureResourcePreparer and prevent WithVSCodeDebugSupport execution in publish mode by @github-actions[bot] in [release/9.5] Fix CommandLineArgsCallbackContext ExecutionContext in AzureResourcePreparer and prevent WithVSCodeDebugSupport execution in publish mode dotnet/aspire#11788
[release/9.5] Fix GenAI visualizer when span is missing peer attribute by @JamesNK in [release/9.5] Fix GenAI visualizer when span is missing peer attribute dotnet/aspire#11765
[release/9.5] Support parameter names with dashes resolved from underscore configuration by @github-actions[bot] in [release/9.5] Support parameter names with dashes resolved from underscore configuration dotnet/aspire#11802
[release/9.5] Adapt OpenAI health check based on endpoint configuration by @github-actions[bot] in [release/9.5] Adapt OpenAI health check based on endpoint configuration dotnet/aspire#11792

Full Changelog: dotnet/aspire@v9.5.0...v9.5.1

9.5.0

We are excited to share that our 9.5.0 release of Aspire has shipped! All of the packages are available in NuGet.org now. Head over to https://learn.microsoft.com/en-us/dotnet/aspire/whats-new/dotnet-aspire-9.5 to find what's new in 9.5.0!

New Contributors

@benwitmanmsft made their first contribution in Add missing end quote for Outputs declaration dotnet/aspire#10289
@MattKotsenas made their first contribution in Add xmldocs to generated metadata projects dotnet/aspire#9868
@danespinosa made their first contribution in Update contributing.md dotnet/aspire#10394
@jnyrup made their first contribution in Do not match pipe as port separator dotnet/aspire#10884
@ericstj made their first contribution in Update Azure.AI.OpenAI dotnet/aspire#10928
@jeremy-vm made their first contribution in Bump azurite to latest release for azure storage emulator dotnet/aspire#10972
@Steinblock made their first contribution in fix for wrong OpenAIClientOptions used with keyed OpenAIClient(s) dotnet/aspire#11003
@brettcannon made their first contribution in Fix grammar in AddX method responsibilities docs dotnet/aspire#11014
@twsouthwick made their first contribution in Allow requiring OpenTelemetry protocol if needed dotnet/aspire#10507
@KirillOsenkov made their first contribution in Make copying project templates incremental dotnet/aspire#11164
@CaitieM20 made their first contribution in Caitie/update test templates dotnet/aspire#10662

Full Changelog: dotnet/aspire@v9.4.0...v9.5.0

9.4.2 What's Changed

[release/9.4] Simplify Aspire CLI project name validation to only reject path separators by @github-actions[bot] in [release/9.4] Simplify Aspire CLI project name validation to only reject path separators dotnet/aspire#10832
[release/9.4] External Services with URL Parameter fails to generate manifests by @github-actions[bot] in [release/9.4] External Services with URL Parameter fails to generate manifests dotnet/aspire#10806
[release/9.4] Always update resource list in console logs after hidden bool changes by @github-actions[bot] in [release/9.4] Always update resource list in console logs after hidden bool changes dotnet/aspire#10738
[release/9.4] serve blazor.web.js from wwwroot by @JamesNK in [release/9.4] serve blazor.web.js from wwwroot dotnet/aspire#10990
Branding updates for 9.4.2 by @joperezr in Branding updates for 9.4.2 dotnet/aspire#11026
[release/9.4] Port Fix creating projects with GB18030 chars by @danmoseley in [release/9.4] Port Fix creating projects with GB18030 chars dotnet/aspire#11032
[release/9.4] Fix Azure AI Foundry resource name by @github-actions[bot] in [release/9.4] Fix Azure AI Foundry resource name dotnet/aspire#11038
[release/9.4] Fixed properties override when publishing an update in external service by @github-actions[bot] in [release/9.4] Fixed properties override when publishing an update in external service dotnet/aspire#10824

Full Changelog: dotnet/aspire@v9.4.1...v9.4.2

9.4.1 What's Changed

[release/9.4] Mark Aspire.CLI as stable by @joperezr in [release/9.4] Mark Aspire.CLI as stable dotnet/aspire#10724
[release/9.4] aspire config set writes appHostPath to ~/.aspire/settings.json globally, causing incorrect path resolution by @github-actions[bot] in [release/9.4] aspire config set writes appHostPath to ~/.aspire/settings.json globally, causing incorrect path resolution dotnet/aspire#10703
[release/9.4] Update dependencies from microsoft/usvc-apiserver by @danegsta in [release/9.4] Update dependencies from microsoft/usvc-apiserver dotnet/aspire#10814
[release/9.4] Fix grid scrolling bugs by @github-actions[bot] in [release/9.4] Fix grid scrolling bugs dotnet/aspire#10861
Bump package versions to 9.4.1 in project files by @joperezr in Bump package versions to 9.4.1 in project files dotnet/aspire#10891

Full Changelog: dotnet/aspire@v9.4.0...v9.4.1

9.4.0

We are excited to share that our 9.4.0 release of Aspire has shipped! All of the packages are available in NuGet.org now. Head over to https://learn.microsoft.com/en-us/dotnet/aspire/whats-new/dotnet-aspire-9.4 to find what's new in 9.4.0!

What's Changed

API review: Add Services property to ResourceEndpointsAllocatedEvent by @DamianEdwards in API review: Add Services property to ResourceEndpointsAllocatedEvent dotnet/aspire#9270
Fix visibility updates during resource upserts by @adamint in Fix visibility updates during resource upserts dotnet/aspire#9264
Accept null value in Redis WithPassword to ensure password dosen't set in redis-server by @Alirexaa in Accept null value in Redis WithPassword to ensure password dosen't set in redis-server dotnet/aspire#9278
Make sure the publisher example supports azd by @davidfowl in Make sure the publisher example supports azd dotnet/aspire#9277
API review: WithHostPort should accept null for port param by @Alirexaa in API review: WithHostPort should accept null for port param dotnet/aspire#9282
Refactor database explorer resource builders to not prefix their names the name of the first resource they are added to. by @paulomorgado in Refactor database explorer resource builders to not prefix their names the name of the first resource they are added to. dotnet/aspire#8237
Test that ensures legacy dashboard token env var is honored by @DamianEdwards in Test that ensures legacy dashboard token env var is honored dotnet/aspire#9296
Refactor solution file from .sln to .slnx format and update related d… by @davidfowl in Refactor solution file from .sln to .slnx format and update related d… dotnet/aspire#9295
Minor dashboard improvements and clean up by @JamesNK in Minor dashboard improvements and clean up dotnet/aspire#9301
Minor improvements to resource changed log by @JamesNK in Minor improvements to resource changed log dotnet/aspire#9303
Fix Blazor error logging to telemetry by @JamesNK in Fix Blazor error logging to telemetry dotnet/aspire#9304
Don't throw from component telemetry context dispose if not initialized by @JamesNK in Don't throw from component telemetry context dispose if not initialized dotnet/aspire#9306
[CI] Add PR validation on macOS by @radical in [CI] Add PR validation on macOS dotnet/aspire#9287
Localized file check-in by OneLocBuild Task: Build definition ID 1309: Build ID 2709142 by @dotnet-bot in Localized file check-in by OneLocBuild Task: Build definition ID 1309: Build ID 2709142 dotnet/aspire#9302
Ignore case on FormatDateTime_WithMilliseconds_NewZealandCulture by @adamint in Ignore case on FormatDateTime_WithMilliseconds_NewZealandCulture dotnet/aspire#9316
Changing default SKU for App Service Plan to P0V3 by @ShilpiRachna1 in Changing default SKU for App Service Plan to P0V3 dotnet/aspire#9280
Branding updates for 9.4 by @joperezr in Branding updates for 9.4 dotnet/aspire#9331
Increase retry time in AppBar_Change_Theme_ReloadPage by @adamint in Increase retry time in AppBar_Change_Theme_ReloadPage dotnet/aspire#9317
Update xUnit.v3 to support MTP tests by @peterwald in Update xUnit.v3 to support MTP tests dotnet/aspire#9261
[main] Update dependencies from microsoft/usvc-apiserver by @dotnet-maestro[bot] in [main] Update dependencies from microsoft/usvc-apiserver dotnet/aspire#9333
Add tracing support for Azure App Configuration component by @zhiyuanliang-ms in Add tracing support for Azure App Configuration component dotnet/aspire#9323
Revert "Update xUnit.v3 to support MTP tests (#9261)" by @radical in Revert "Update xUnit.v3 to support MTP tests (#9261)" dotnet/aspire#9336
Remove the workaround to explicitly set the container runtime for tests now that the orchestrator is updated by @danegsta in Remove the workaround to explicitly set the container runtime for tests now that the orchestrator is updated dotnet/aspire#9339
[Automated] Update API Surface Area by @github-actions[bot] in [Automated] Update API Surface Area dotnet/aspire#8736
Revert "Revert "Update xUnit.v3 to support MTP tests (#9261)" (#9336)" by @radical in Revert "Revert "Update xUnit.v3 to support MTP tests (#9261)" (#9336)" dotnet/aspire#9337
TestsReportGenerator: Always show the error message, and truncate only the stdout by @radical in TestsReportGenerator: Always show the error message, and truncate only the stdout dotnet/aspire#9335
[CI] Fix azdo builds for main by @radical in [CI] Fix azdo builds for main dotnet/aspire#9338
[main] Update dependencies from microsoft/usvc-apiserver by @dotnet-maestro[bot] in [main] Update dependencies from microsoft/usvc-apiserver dotnet/aspire#9347
Fully qualify OutputPath for PublishingContext by @captainsafia in Fully qualify OutputPath for PublishingContext dotnet/aspire#9351
Fix typo in doccomment in ContainerResourceBuilderExtensions.cs by @KuraiAndras in Fix typo in doccomment in ContainerResourceBuilderExtensions.cs dotnet/aspire#9342
Update health check to ensure blob containers created at right time by @RussKie in Update health check to ensure blob containers created at right time dotnet/aspire#9159
Re-apply quarantined test for validation by @sebastienros in Re-apply quarantined test for validation dotnet/aspire#9364
Update telemetry doc for AzureAppConfiguration by @sebastienros in Update telemetry doc for AzureAppConfiguration dotnet/aspire#9365
Enable MTP tests via MSBuild property by @captainsafia in Enable MTP tests via MSBuild property dotnet/aspire#9361
catch json error by @danmoseley in catch json error dotnet/aspire#9369
Refactor a common TempDirectory test class by @eerhardt in Refactor a common TempDirectory test class dotnet/aspire#9370
Centralize Verify convention by @sebastienros in Centralize Verify convention dotnet/aspire#9371
Update Aspire to stable Microsoft.Extensions.AI.Abstractions by @stephentoub in Update Aspire to stable Microsoft.Extensions.AI.Abstractions dotnet/aspire#9356
Update RunCommand.cs by @IEvangelist in Update RunCommand.cs dotnet/aspire#9360
Add support for copying existing files via WithContainerFiles API by @danegsta in Add support for copying existing files via WithContainerFiles API dotnet/aspire#8908
Do not fail on partial trust warning. by @mitchdenny in Do not fail on partial trust warning. dotnet/aspire#9384
markdown lint by @danmoseley in markdown lint dotnet/aspire#9389
Merge branch release/9.3 into main by @joperezr in Merge branch release/9.3 into main dotnet/aspire#9394
Fix failure in MongoDbFunctionalTests.VerifyWithInitFiles by @danegsta in Fix failure in MongoDbFunctionalTests.VerifyWithInitFiles dotnet/aspire#9391
Ensure all grid columns have tooltips by @adamint in Ensure all grid columns have tooltips dotnet/aspire#9401
Remove test from quarantine by @danegsta in Remove test from quarantine dotnet/aspire#9402
copilot setup steps by @danmoseley in copilot setup steps dotnet/aspire#9409
... (truncated)

9.3.2 What's Changed

[release/9.3] Fix SqlServer PowerShell module version to avoid breaking changes in 22.4.5.1 by @sebastienros in [release/9.3] Fix SqlServer PowerShell module version to avoid breaking changes in 22.4.5.1 dotnet/aspire#9958
Bumping patch version for 9.3.2 by @joperezr in Bumping patch version for 9.3.2 dotnet/aspire#9963

Full Changelog: dotnet/aspire@v9.3.1...v9.3.2

9.3.1 What's Changed

[release/9.3] fix markdown lint in release/9.3 by @danmoseley in [release/9.3] fix markdown lint in release/9.3 dotnet/aspire#9536
[release/9.3] branding for 9.3.1 by @danmoseley in [release/9.3] branding for 9.3.1 dotnet/aspire#9539
[release/9.3] Fix Blob Container Connection String Format Exception by @github-actions in [release/9.3] Fix Blob Container Connection String Format Exception dotnet/aspire#9496
[release/9.3] Force SqlDatabase resource api version by @sebastienros in [release/9.3] Force SqlDatabase resource api version dotnet/aspire#9535
[release/9.3] Use ProcessSpec for invoking dotnet publish by @github-actions in [release/9.3] Use ProcessSpec for invoking dotnet publish dotnet/aspire#9561
[release/9.3] Initialize telemetry context in UpdateTelemetryProperties if not already initialized by @JamesNK in [release/9.3] Initialize telemetry context in UpdateTelemetryProperties if not already initialized dotnet/aspire#9602
[release/9.3] Fix the state propagation for azure resources by @github-actions in [release/9.3] Fix the state propagation for azure resources dotnet/aspire#9687
[release/9.3] Skip role assignment handling for emulators (#9705) by @eerhardt in [release/9.3] Skip role assignment handling for emulators (#9705) dotnet/aspire#9716

Full Changelog: dotnet/aspire@v9.3.0...v9.3.1

9.3.0

We are excited to share that our 9.3.0 release of .NET Aspire has shipped! All of the packages are available in NuGet.org now. Find out what is new here.

What's Changed

Davidfowl/fix emulators by @davidfowl in Davidfowl/fix emulators dotnet/aspire#8406
Add NO-MERGE label to auto created api-diff PR by @Alirexaa in Add NO-MERGE label to auto created api-diff PR dotnet/aspire#8479
Branding updates for 9.3 by @joperezr in Branding updates for 9.3 dotnet/aspire#8505
Remove Roslyn workaround by @eerhardt in Remove Roslyn workaround dotnet/aspire#8509
[tests] Quarantine additional tests for issues open against them by @radical in [tests] Quarantine additional tests for issues open against them dotnet/aspire#8508
Interactive prompting for aspire new by @mitchdenny in Interactive prompting for aspire new dotnet/aspire#8520
Rename IKeyVaultResource and IKeyVaultSecretReference by @eerhardt in Rename IKeyVaultResource and IKeyVaultSecretReference dotnet/aspire#8532
Remove AzureContainerAppEnvironmentResource BicepOutputReferences from public API by @eerhardt in Remove AzureContainerAppEnvironmentResource BicepOutputReferences from public API dotnet/aspire#8529
[outerloop] Run with -ci to match the other test runs on CI by @radical in [outerloop] Run with -ci to match the other test runs on CI dotnet/aspire#8526
Move database script annotations to their respective projects by @sebastienros in Move database script annotations to their respective projects dotnet/aspire#8535
Remove null/nullable parameter from DistributedApplicationExecutionContext by @sebastienros in Remove null/nullable parameter from DistributedApplicationExecutionContext dotnet/aspire#8533
Update tests-outerloop.yml run frequency by @RussKie in Update tests-outerloop.yml run frequency dotnet/aspire#8540
Improve path prompt for aspire new command. by @mitchdenny in Improve path prompt for aspire new command. dotnet/aspire#8542
Retry resource stopping operation by @karolz-ms in Retry resource stopping operation dotnet/aspire#8541
Adding descriptions to all args/options in CLI. by @mitchdenny in Adding descriptions to all args/options in CLI. dotnet/aspire#8544
CLI publishing failure fixes. by @mitchdenny in CLI publishing failure fixes. dotnet/aspire#8551
[tests] Quarantine, and un-quarantine some tests by @radical in [tests] Quarantine, and un-quarantine some tests dotnet/aspire#8545
[CI] Use an in-repo copy of devcerts installation script by @radical in [CI] Use an in-repo copy of devcerts installation script dotnet/aspire#8548
Change Redis Insights to use environment variables for preconfigured database connections by @Alirexaa in Change Redis Insights to use environment variables for preconfigured database connections dotnet/aspire#8524
Switch to null as default for owner and group in WithContainerFiles by @danegsta in Switch to null as default for owner and group in WithContainerFiles dotnet/aspire#8557
Refactor AzurePublisher to enable usage in downstream publishers by @sunandabalu in Refactor AzurePublisher to enable usage in downstream publishers dotnet/aspire#8507
Split out build step in publisher. by @mitchdenny in Split out build step in publisher. dotnet/aspire#8567
PublishingActivityProgressReporter fixes by @mitchdenny in PublishingActivityProgressReporter fixes dotnet/aspire#8571
[main] Update dependencies from dotnet/arcade by @dotnet-maestro in [main] Update dependencies from dotnet/arcade dotnet/aspire#8579
Update nightly references to daily by @afscrome in Update nightly references to daily dotnet/aspire#8586
Add RPC protocol compat check. by @mitchdenny in Add RPC protocol compat check. dotnet/aspire#8577
Return correct exit code from build.ps1 by @RussKie in Return correct exit code from build.ps1 dotnet/aspire#8582
Constrain test-only dependencies to /tests folder by @RussKie in Constrain test-only dependencies to /tests folder dotnet/aspire#8576
Rename IAzureKeyVaultResource.GetSecretReference to GetSecret by @eerhardt in Rename IAzureKeyVaultResource.GetSecretReference to GetSecret dotnet/aspire#8598
mysql test timeouts by @danmoseley in mysql test timeouts dotnet/aspire#8536
Fix --watch hangs. by @mitchdenny in Fix --watch hangs. dotnet/aspire#8585
update to include all d.p.p by @danmoseley in update to include all d.p.p dotnet/aspire#8603
Address feedback to WithUrls() by @DamianEdwards in Address feedback to WithUrls() dotnet/aspire#8602
Fix a regression in endpoint resolution in environment variables by @davidfowl in Fix a regression in endpoint resolution in environment variables dotnet/aspire#8609
Disable OTEL telemetry in CLI if not a debug build. by @mitchdenny in Disable OTEL telemetry in CLI if not a debug build. dotnet/aspire#8612
AddAzureContainerAppEnvironment should use the environment name as a prefix by @eerhardt in AddAzureContainerAppEnvironment should use the environment name as a prefix dotnet/aspire#8606
Rename test env controlling and project test capabilities variables by @RussKie in Rename test env controlling and project test capabilities variables dotnet/aspire#8518
Look for shipping artifacts according to the build configuration by @RussKie in Look for shipping artifacts according to the build configuration dotnet/aspire#8616
[tests] Re-enable some quarantined tests that haven't been failing by @radical in [tests] Re-enable some quarantined tests that haven't been failing dotnet/aspire#8615
Follow up from azd naming change by @eerhardt in Follow up from azd naming change dotnet/aspire#8631
Fix existing resources with the azure publisher by @davidfowl in Fix existing resources with the azure publisher dotnet/aspire#8622
Introduce version selector for Aspire templates by @mitchdenny in Introduce version selector for Aspire templates dotnet/aspire#8625
Error handling for GetCapabilitiesAsync connection issues by @mitchdenny in Error handling for GetCapabilitiesAsync connection issues dotnet/aspire#8614
Obsolete AddAzureContainerAppsInfrastructure by @eerhardt in Obsolete AddAzureContainerAppsInfrastructure dotnet/aspire#8639
Add error handling for package updates in workflow by @joperezr in Add error handling for package updates in workflow dotnet/aspire#8390
Filter out tracing health endpoints in service defaults templates by @DamianEdwards in Filter out tracing health endpoints in service defaults templates dotnet/aspire#8643
Show neutral icon for container exiting with status code 0 by @adamint in Show neutral icon for container exiting with status code 0 dotnet/aspire#8477
... (truncated)

Commits viewable in compare view.

Updated Microsoft.AspNetCore.OpenApi from 9.0.5 to 9.0.10.

Release notes

Sourced from Microsoft.AspNetCore.OpenApi's releases.

9.0.10

Release

What's Changed

Update branding to 9.0.10 by @vseanreesermsft in Update branding to 9.0.10 dotnet/aspnetcore#63510
[9.0] Make duplicate deb/rpm packages so we can sign them with the new PMC key by @jkoritzinsky in [9.0] Make duplicate deb/rpm packages so we can sign them with the new PMC key dotnet/aspnetcore#63249
[release/9.0] Extend Unofficial 1ES template in IdentityModel nightly tests job by @github-actions[bot] in [release/9.0] Extend Unofficial 1ES template in IdentityModel nightly tests job dotnet/aspnetcore#63465
[release/9.0] (deps): Bump src/submodules/googletest from 373af2e to eb2d85e by @dependabot[bot] in [release/9.0] (deps): Bump src/submodules/googletest from 373af2e to eb2d85e dotnet/aspnetcore#63501
[release/9.0] Quarantine ResponseBody_WriteContentLength_PassedThrough by @wtgodbe in [release/9.0] Quarantine ResponseBody_WriteContentLength_PassedThrough dotnet/aspnetcore#63533
[release/9.0] Update dependencies from dotnet/arcade by @dotnet-maestro[bot] in [release/9.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#63304
[release/9.0] [OpenAPI] Use invariant culture for TextWriter by @martincostello in [release/9.0] [OpenAPI] Use invariant culture for TextWriter dotnet/aspnetcore#62239
[release/9.0] Update dependencies from dotnet/extensions by @dotnet-maestro[bot] in [release/9.0] Update dependencies from dotnet/extensions dotnet/aspnetcore#63303
Unquarantine RadioButtonGetsResetAfterSubmittingEnhancedForm by @ilonatommy in Unquarantine RadioButtonGetsResetAfterSubmittingEnhancedForm dotnet/aspnetcore#63556
[release/9.0] Update dependencies from dotnet/extensions by @dotnet-maestro[bot] in [release/9.0] Update dependencies from dotnet/extensions dotnet/aspnetcore#63577
Merging internal commits for release/9.0 by @vseanreesermsft in Merging internal commits for release/9.0 dotnet/aspnetcore#63604
[release/9.0] Update dependencies from dotnet/arcade by @dotnet-maestro[bot] in [release/9.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#63648
backport(9.0): Fix runtime architecture detection logic in ANCM. by @DeagleGross in backport(9.0): Fix runtime architecture detection logic in ANCM. dotnet/aspnetcore#63707

Full Changelog: dotnet/aspnetcore@v9.0.9...v9.0.10

9.0.9

Release

What's Changed

Update branding to 9.0.9 by @vseanreesermsft in Update branding to 9.0.9 dotnet/aspnetcore#63107
[release/9.0] (deps): Bump src/submodules/googletest from c67de11 to 373af2e by @dependabot[bot] in [release/9.0] (deps): Bump src/submodules/googletest from c67de11 to 373af2e dotnet/aspnetcore#63035
[release/9.0] Dispose the certificate chain elements with the chain by @github-actions[bot] in [release/9.0] Dispose the certificate chain elements with the chain dotnet/aspnetcore#62992
[release/9.0] Update dependencies from dotnet/extensions by @dotnet-maestro[bot] in [release/9.0] Update dependencies from dotnet/extensions dotnet/aspnetcore#62702
[release/9.0] Update Microsoft.Build versions by @wtgodbe in [release/9.0] Update Microsoft.Build versions dotnet/aspnetcore#62505
[release/9.0] Update dependencies from dotnet/arcade by @dotnet-maestro[bot] in [release/9.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#62832
[release/9.0] Update SignalR Redis tests to use internal Docker Hub mirror by @github-actions[bot] in [release/9.0] Update SignalR Redis tests to use internal Docker Hub mirror dotnet/aspnetcore#63116
[release/9.0] [SignalR] Don't throw for message headers in Java client by @github-actions[bot] in [release/9.0] [SignalR] Don't throw for message headers in Java client dotnet/aspnetcore#62783
Merging internal commits for release/9.0 by @vseanreesermsft in Merging internal commits for release/9.0 dotnet/aspnetcore#63151
[release/9.0] Update dependencies from dotnet/arcade by @dotnet-maestro[bot] in [release/9.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#63190
[release/9.0] Update dependencies from dotnet/extensions by @dotnet-maestro[bot] in [release/9.0] Update dependencies from dotnet/extensions dotnet/aspnetcore#63214

Full Changelog: dotnet/aspnetcore@v9.0.8...v9.0.9

9.0.7

Release

What's Changed

Update branding to 9.0.7 by @vseanreesermsft in Update branding to 9.0.7 dotnet/aspnetcore#62242
[release/9.0] (deps): Bump src/submodules/googletest from 04ee1b4 to e9092b1 by @dependabot in [release/9.0] (deps): Bump src/submodules/googletest from 04ee1b4 to e9092b1 dotnet/aspnetcore#62199
Fix OpenApiJsonSchema array parsing (#62051) by @BrennanConroy in Fix OpenApiJsonSchema array parsing (#62051) dotnet/aspnetcore#62118
[release/9.0] Update dependencies from dotnet/extensions by @dotnet-maestro in [release/9.0] Update dependencies from dotnet/extensions dotnet/aspnetcore#61986
[release/9.0] Update dependencies from dotnet/arcade by @dotnet-maestro in [release/9.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#61945
[release/9.0] Update Alpine helix references by @wtgodbe in [release/9.0] Update Alpine helix references dotnet/aspnetcore#62240
[Backport 9.0] [IIS] Manually parse exe bitness (#61894) by @BrennanConroy in [Backport 9.0] [IIS] Manually parse exe bitness (#61894) dotnet/aspnetcore#62038
[release/9.0] Associate tagged keys with entries so replacements are not evicted by @github-actions in [release/9.0] Associate tagged keys with entries so replacements are not evicted dotnet/aspnetcore#62248
[release/9.0] Block test that is failing after switching to latest-chrome by @github-actions in [release/9.0] Block test that is failing after switching to latest-chrome dotnet/aspnetcore#62283
[release/9.0] Update dependencies from dotnet/arcade by @dotnet-maestro in [release/9.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#62281
[release/9.0] Update dependencies from dotnet/extensions by @dotnet-maestro in [release/9.0] Update dependencies from dotnet/extensions dotnet/aspnetcore#62282
Merging internal commits for release/9.0 by @vseanreesermsft in Merging internal commits for release/9.0 dotnet/aspnetcore#62303

Full Changelog: dotnet/aspnetcore@v9.0.6...v9.0.7

9.0.6 Bug Fixes

Forwarded Headers Middleware: Ignore X-Forwarded-Headers from Unknown Proxy (#61622)
The Forwarded Headers Middleware now ignores X-Forwarded-Headers sent from unknown proxies. This change improves security by ensuring that only trusted proxies can influence forwarded header values, preventing potential spoofing or misrouting issues.

Dependency Updates

Bump src/submodules/googletest from 52204f7 to 04ee1b4 (#61762)
Updates the GoogleTest submodule to a newer commit, bringing in the latest improvements and bug fixes from the upstream project.
Update dependencies from dotnet/arcade (#61714)
Updates internal build and infrastructure dependencies from the dotnet/arcade repository, ensuring compatibility and access to the latest build tools.
Update dependencies from dotnet/extensions (#61571)
Refreshes dependencies from the dotnet/extensions repository, incorporating the latest features and fixes from the extensions libraries.
Update dependencies from dotnet/extensions (#61877)
Further updates dependencies from dotnet/extensions, ensuring the project benefits from recent improvements and bug fixes.
Update dependencies from dotnet/arcade (#61892)
Additional updates to build and infrastructure dependencies from dotnet/arcade, maintaining up-to-date tooling and build processes.

Miscellaneous

Update branding to 9.0.6 (#61831)
Updates the project version and branding to 9.0.6, reflecting the new release and ensuring version consistency across the codebase.
Merging internal commits for release/9.0 (#61925)
Incorporates various internal commits into the release/9.0 branch, ensuring that all relevant changes are included in this release.

This summary is generated and may contain inaccuracies. For complete details, please review the linked pull requests.

Full Changelog: v9.0.5...v9.0.6

Commits viewable in compare view.

Updated Microsoft.EntityFrameworkCore.Design from 9.0.5 to 9.0.10.

Release notes

Sourced from Microsoft.EntityFrameworkCore.Design's releases.

9.0.10

Release

What's Changed

[release/8.0-staging] Merge release/8.0 to release/8.0-staging by @cincuranet in [release/8.0-staging] Merge release/8.0 to release/8.0-staging dotnet/efcore#36540
[release/9.0-staging] Merge release/9.0 to release/9.0-staging by @cincuranet in [release/9.0-staging] Merge release/9.0 to release/9.0-staging dotnet/efcore#36541
[release/9.0] Update dependencies from dotnet/arcade by @dotnet-maestro[bot] in [release/9.0] Update dependencies from dotnet/arcade dotnet/efcore#36690
Update branding to 9.0.10 by @vseanreesermsft in Update branding to 9.0.10 dotnet/efcore#36697
Update branding to 8.0.21 by @vseanreesermsft in Update branding to 8.0.21 dotnet/efcore#36696
[automated] Merge branch 'release/8.0' => 'release/9.0' by @github-actions[bot] in [automated] Merge branch 'release/8.0' => 'release/9.0' dotnet/efcore#36699
Merging internal commits for release/8.0 by @vseanreesermsft in Merging internal commits for release/8.0 dotnet/efcore#36727
Merging internal commits for release/9.0 by @vseanreesermsft in Merging internal commits for release/9.0 dotnet/efcore#36728
[automated] Merge branch 'release/8.0' => 'release/9.0' by @github-actions[bot] in [automated] Merge branch 'release/8.0' => 'release/9.0' dotnet/efcore#36734
[release/9.0] Update dependencies from dotnet/arcade by @dotnet-maestro[bot] in [release/9.0] Update dependencies from dotnet/arcade dotnet/efcore#36753
[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro[bot] in [release/8.0] Update dependencies from dotnet/arcade dotnet/efcore#36765
[release/9.0] Update dependencies from dotnet/arcade by @dotnet-maestro[bot] in [release/9.0] Update dependencies from dotnet/arcade dotnet/efcore#36782
[release/8.0] Disable Guardian Dotnet Analyzers by @AndriySvyryd in [release/8.0] Disable Guardian Dotnet Analyzers dotnet/efcore#36776
[release/9.0] Disable Guardian Dotnet Analyzers by @AndriySvyryd in [release/9.0] Disable Guardian Dotnet Analyzers dotnet/efcore#36777
[8.0] Resolve query logger from QueryContext in shaper generation (#36758) by @roji in [8.0] Resolve query logger from QueryContext in shaper generation (#36758) dotnet/efcore#36779
[9.0] Resolve query logger from QueryContext in shaper generation (#36758) by @roji in [9.0] Resolve query logger from QueryContext in shaper generation (#36758) dotnet/efcore#36778
[release/8.0] Merge release/8.0-staging to release/8.0 by @cincuranet in [release/8.0] Merge release/8.0-staging to release/8.0 dotnet/efcore#36788
[release/9.0] Merge release/9.0-staging to release/9.0 by @cincuranet in [release/9.0] Merge release/9.0-staging to release/9.0 dotnet/efcore#36789
[automated] Merge branch 'release/8.0' => 'release/9.0' by @github-actions[bot] in [automated] Merge branch 'release/8.0' => 'release/9.0' dotnet/efcore#36784
[release/9.0] Update dependencies from dotnet/arcade by @dotnet-maestro[bot] in [release/9.0] Update dependencies from dotnet/arcade dotnet/efcore#36833
[release/8.0] Remove OSX.13.ARM64 from HelixTargetQueues by @AndriySvyryd in [release/8.0] Remove OSX.13.ARM64 from HelixTargetQueues dotnet/efcore#36838
[automated] Merge branch 'release/8.0' => 'release/9.0' by @github-actions[bot] in [automated] Merge branch 'release/8.0' => 'release/9.0' dotnet/efcore#36841
[release/9.0] Update dependencies from dotnet/arcade by @dotnet-maestro[bot] in [release/9.0] Update dependencies from dotnet/arcade dotnet/efcore#36852
[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro[bot] in [release/8.0] Update dependencies from dotnet/arcade dotnet/efcore#36853
[release/8.0] Remove OSX.13.Amd64 target from HelixTargetQueues by @AndriySvyryd in [release/8.0] Remove OSX.13.Amd64 target from HelixTargetQueues dotnet/efcore#36855
[automated] Merge branch 'release/8.0' => 'release/9.0' by @github-actions[bot] in [automated] Merge branch 'release/8.0' => 'release/9.0' dotnet/efcore#36860
[release/9.0] Update dependencies from dotnet/arcade by @dotnet-maestro[bot] in [release/9.0] Update dependencies from dotnet/arcade dotnet/efcore#36867

Full Changelog: dotnet/efcore@v9.0.9...v9.0.10

9.0.9

Release

What's Changed

[release/8.0] Merge release/8.0 => release/8.0-staging by @cincuranet in [release/8.0] Merge release/8.0 => release/8.0-staging dotnet/efcore#36197
[release/9.0] Merge release/9.0 => release/9.0-staging by @cincuranet in [release/9.0] Merge release/9.0 => release/9.0-staging dotnet/efcore#36201
[release/9.0] Update dependencies from dotnet/arcade by @dotnet-maestro[bot] in [release/9.0] Update dependencies from dotnet/arcade dotnet/efcore#36398
[release/9.0] Update dependencies from dotnet/arcade by @dotnet-maestro[bot] in [release/9.0] Update dependencies from dotnet/arcade dotnet/efcore#36495
Update branding to 9.0.9 by @vseanreesermsft in Update branding to 9.0.9 dotnet/efcore#36498
Update branding to 8.0.20 by @vseanreesermsft in Update branding to 8.0.20 dotnet/efcore#36497
[release/9.0] Dispose related readers in GroupBySplitQueryingEnumerable (#36484) by @roji in [release/9.0] Dispose related readers in GroupBySplitQueryingEnumerable (#36484) dotnet/efcore#36490
[release/8.0] Dispose related readers in GroupBySplitQueryingEnumerable (#36484) by @roji in [release/8.0] Dispose related readers in GroupBySplitQueryingEnumerable (#36484) dotnet/efcore#36489
[automated] Merge branch 'release/8.0' => 'release/9.0' by @github-actions[bot] in [automated] Merge branch 'release/8.0' => 'release/9.0' dotnet/efcore#36500
Merging internal commits for release/8.0 by @vseanreesermsft in Merging internal commits for release/8.0 dotnet/efcore#36512
Merging internal commits for release/9.0 by @vseanreesermsft in Merging internal commits for release/9.0 dotnet/efcore#36511
[automated] Merge branch 'release/8.0' => 'release/9.0' by @github-actions[bot] in [automated] Merge branch 'release/8.0' => 'release/9.0' dotnet/efcore#36514
[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro[bot] in [release/8.0] Update dependencies from dotnet/arcade dotnet/efcore#36533
[release/8.0] Merge release/8.0-staging to release/8.0 by @cincuranet in [release/8.0] Merge release/8.0-staging to release/8.0 dotnet/efcore#36531
[release/9.0] Merge release/9.0-staging to release/9.0 by @cincuranet in [release/9.0] Merge release/9.0-staging to release/9.0 dotnet/efcore#36532
[release/9.0] Update dependencies from dotnet/arcade by @dotnet-maestro[bot] in [release/9.0] Update dependencies from dotnet/arcade dotnet/efcore#36534
[automated] Merge branch 'release/8.0' => 'release/9.0' by @github-actions[bot] in [automated] Merge branch 'release/8.0' => 'release/9.0' dotnet/efcore#36537
[release/9.0] Update dependencies from dotnet/arcade by @dotnet-maestro[bot] in [release/9.0] Update dependencies from dotnet/arcade dotnet/efcore#36592

Full Changelog: dotnet/efcore@v9.0.8...v9.0.9

9.0.7

Release

What's Changed

Merge branch 'release/8.0' =>'release/8.0-staging' by @AndriySvyryd in Merge branch 'release/8.0' =>'release/8.0-staging' dotnet/efcore#35893
Merge branch 'release/8.0' =>'release/8.0-staging' by @AndriySvyryd in Merge branch 'release/8.0' =>'release/8.0-staging' dotnet/efcore#36047
[release/9.0] Update dependencies from dotnet/arcade by @dotnet-maestro[bot] in [release/9.0] Update dependencies from dotnet/arcade dotnet/efcore#36098
Delete src/arcade/eng/common directory by @akoeplinger in Delete src/arcade/eng/common directory dotnet/efcore#36102
[release/9.0] Update dependencies from dotnet/arcade by @dotnet-maestro[bot] in [release/9.0] Update dependencies from dotnet/arcade dotnet/efcore#36143
[release/8.0] Add missing parentheses for set operations by @roji in [release/8.0] Add missing parentheses for set operations dotnet/efcore#36139
[release/9.0] Add missing parentheses for set operations by @roji in [release/9.0] Add missing parentheses for set operations dotnet/efcore#36138
Update branding to 9.0.7 by @vseanreesermsft in Update branding to 9.0.7 dotnet/efcore#36186
Update branding to 8.0.18 by @vseanreesermsft in Update branding to 8.0.18 dotnet/efcore#36185
[release/8.0] Merge release/8.0-staging => release/8.0 by @cincuranet in [release/8.0] Merge release/8.0-staging => release/8.0 dotnet/efcore#36193
[release/9.0] Merge release/9.0-staging => release/9.0 by @cincuranet in [release/9.0] Merge release/9.0-staging => release/9.0 dotnet/efcore#36194
[automated] Merge branch 'release/8.0' => 'release/9.0' by @github-actions[bot] in [automated] Merge branch 'release/8.0' => 'release/9.0' dotnet/efcore#36192
[release/9.0] Update dependencies from dotnet/arcade by @dotnet-maestro[bot] in [release/9.0] Update dependencies from dotnet/arcade dotnet/efcore#36213
Merging internal commits for release/8.0 by @vseanreesermsft in Merging internal commits for release/8.0 dotnet/efcore#36222
Merging internal commits for release/9.0 by @vseanreesermsft in Merging internal commits for release/9.0 dotnet/efcore#36223
[automated] Merge branch 'release/8.0' => 'release/9.0' by @github-actions[bot] in [automated] Merge branch 'release/8.0' => 'release/9.0' dotnet/efcore#36227

Full Changelog: dotnet/efcore@v9.0.6...v9.0.7

9.0.6 Bug Fixes

Cosmos/FTS: Improved FullTextScore Translation for Multiple Keywords
The translation of FullTextScore in Cosmos Full-Text Search has been updated to use multiple keywords instead of a keyword array, addressing issues with search accuracy and query compatibility. This resolves #35983 and ensures more reliable full-text search results.
#36000 by @maumar

Dependency Updates

[release/8.0] Update dependencies from dotnet/arcade
Updated the Arcade build infrastructure dependencies for the 8.0 release branch, bringing in the latest improvements and security fixes from the Arcade ecosystem.
#35930 by @dotnet-maestro
[release/9.0] Update dependencies from dotnet/arcade
Updated Arcade dependencies for the 9.0 release branch, ensuring the build system benefits from the latest tooling and reliability enhancements.
#36006 by @dotnet-maestro
[release/8.0] Update dependencies from dotnet/arcade
Another update to Arcade dependencies for the 8.0 branch, further aligning with upstream improvements and fixes.
#36085 by @dotnet-maestro
[release/9.0] Update dependencies from dotnet/arcade
Additional update to Arcade dependencies for the 9.0 branch, maintaining up-to-date build tooling and infrastructure.
#36065 by @dotnet-maestro

Technical Improvements

Merging Internal Commits for release/8.0
Integrated various internal commits into the 8.0 release branch, improving code quality, maintainability, and aligning with internal standards.
#35926 by @vseanreesermsft
Merging Internal Commits for release/8.0
Additional internal commits merged into the 8.0 branch, further enhancing stability and maintainability.
#36080 by @vseanreesermsft
Merging Internal Commits for release/9.0
Integrated internal improvements into the 9.0 branch, ensuring consistency and codebase health.
#36081 by @vseanreesermsft

Infrastructure

Update Branding to 9.0.6
Updated the product branding and version numbers to 9.0.6, ensuring that all assemblies and packages reflect the correct release version.
#36044 by @vseanreesermsft
Update Branding to 8.0.17
Updated branding for the 8.0 release line to version 8.0.17, keeping versioning consistent across all release artifacts.
#36043 by @vseanreesermsft

Miscellaneous

[automated] Merge branch 'release/8.0' => 'release/9.0'
Automated merge of changes from the 8.0 branch into the 9.0 branch, ensuring that all relevant fixes and improvements are carried forward.
#35927 by @github-actions
Merge release/9.0 to release/9.0-staging
Merged the 9.0 branch into the 9.0-staging branch, preparing for further testing and validation before final release.
#36051 by @AndriySvyryd
... (truncated)

Commits viewable in compare view.

Pinned Microsoft.Extensions.Http.Resilience at 9.10.0.

Release notes

Sourced from Microsoft.Extensions.Http.Resilience's releases.

9.10.0 What's Changed

Branding updates for 9.10 by @Copilot in Branding updates for 9.10 dotnet/extensions#6769
Doc improvements by @gewarren in Doc improvements dotnet/extensions#6794
Bump vite from 6.3.5 to 6.3.6 in /src/Libraries/Microsoft.Extensions.AI.Evaluation.Reporting/TypeScript by @dependabot[bot] in Bump vite from 6.3.5 to 6.3.6 in /src/Libraries/Microsoft.Extensions.AI.Evaluation.Reporting/TypeScript dotnet/extensions#6793
Updated changelogs for AI libs by @stephentoub in Updated changelogs for AI libs dotnet/extensions#6787
Update MCP server template by @jeffkl in Update MCP server template dotnet/extensions#6772
Add support for using ConversationID for AzureOpenAI and OpenAI by @ViveliDuCh in Add support for using ConversationID for AzureOpenAI and OpenAI dotnet/extensions#6770
Merging internal commits by @joperezr in Merging internal commits dotnet/extensions#6801
Merge changes from release/9.9 branch by @joperezr in Merge changes from release/9.9 branch dotnet/extensions#6803
Support keyed HybridCache with keyed DistributedCaches and named options by @kelly-yinn in Support keyed HybridCache with keyed DistributedCaches and named options dotnet/extensions#6694
Inventory as code by @wtgodbe in Inventory as code dotnet/extensions#6820
Increase output token limit for EquivalenceEvaluator by @shyamnamboodiripad in Increase output token limit for EquivalenceEvaluator dotnet/extensions#6835
Fix KeyNotFoundException on HttpRequestLatencyListener.OnEventWritten for uknown event sources by @ssmelov in Fix KeyNotFoundException on HttpRequestLatencyListener.OnEventWritten for uknown event sources dotnet/extensions#6821
Add project name normalization to match aspire's code generator logic by @ViveliDuCh in Add project name normalization to match aspire's code generator logic dotnet/extensions#6818
Disable really noisy analyzers, part 1 by @stephentoub in Disable really noisy analyzers, part 1 dotnet/extensions#6837
Fix KeyNotFoundException in HttpRequestLatencyListener.OnEventWritten by @pentp in Fix KeyNotFoundException in HttpRequestLatencyListener.OnEventWritten dotnet/extensions#6823
Update global.json to use .NET 9.0.0 stable instead of RC 1 by @Copilot in Update global.json to use .NET 9.0.0 stable instead of RC 1 dotnet/extensions#6846
Add measures and tags with mediator object to the HttpClientLatencyLogEnricher by @rainsxng in Add measures and tags with mediator object to the HttpClientLatencyLogEnricher dotnet/extensions#6783
Add comprehensive .github/copilot-instructions.md for dotnet/extensions repository by @Copilot in Add comprehensive .github/copilot-instructions.md for dotnet/extensions repository dotnet/extensions#6792
Update to .NET 10 SDK by @eerhardt in Update to .NET 10 SDK dotnet/extensions#6863
Update Microsoft.Extensions.AI changelog files with current NuGet versions by @Copilot in Update Microsoft.Extensions.AI changelog files with current NuGet versions dotnet/extensions#6849
Fix GenerateImagesAsync_SingleImageGeneration integration test by @stephentoub in Fix GenerateImagesAsync_SingleImageGeneration integration test dotnet/extensions#6843
Re-enable IDE0032 by @stephentoub in Re-enable IDE0032 dotnet/extensions#6866
Add OpenTelemetrySpeechToTextClient and friends by @stephentoub in Add OpenTelemetrySpeechToTextClient and friends dotnet/extensions#6845
Update ModelContextProtocol version in MCP template by @MackinnonBuck in Update ModelContextProtocol version in MCP template dotnet/extensions#6870
Scope Ollama resilience settings to Web/Program.cs and restore ServiceDefaults by @ViveliDuCh in Scope Ollama resilience settings to Web/Program.cs and restore ServiceDefaults dotnet/extensions#6850
Update Aspire by @Varorbc in Update Aspire dotnet/extensions#6858
Update MCP template for new registry specification by @Copilot in Update MCP template for new registry specification dotnet/extensions#6796
Add support for HostApplicationBuilder in AmbientMetadata extension by @eduherminio in Add support for HostApplicationBuilder in AmbientMetadata extension dotnet/extensions#6867
Fix mcpserver test baselines by @jeffhandley in Fix mcpserver test baselines dotnet/extensions#6874
Move Microsoft.Extensions.ServiceDiscovery to dotnet/extensions by @eerhardt in Move Microsoft.Extensions.ServiceDiscovery to dotnet/extensions dotnet/extensions#6868
Add copy constructors to option types (ChatOptions, etc.) by @stephentoub in Add copy constructors to option types (ChatOptions, etc.) dotnet/extensions#6882
Fix ChatMessage.CreatedAt being always overwritten by the latest timestamp. by @Copilot in Fix ChatMessage.CreatedAt being always overwritten by the latest timestamp. dotnet/extensions#6885
Small doc fixes by @gewarren in Small doc fixes dotnet/extensions#6887
Update AI changelogs with some recent additions by @stephentoub in Update AI changelogs with some recent additions dotnet/extensions#6886
Fix Assistants IChatClient handling of unrelated tool calls in history by @stephentoub in Fix Assistants IChatClient handling of unrelated tool calls in history dotnet/extensions#6891
Fix duplication between OpenAI Assistants pre-configured tools by @stephentoub in Fix duplication between OpenAI Assistants pre-configured tools dotnet/extensions#6896
Update MCP Server Template to adhere to 2025-09-29 server.json schema by @joelverhagen in Update MCP Server Template to adhere to 2025-09-29 server.json schema dotnet/extensions#6888
Remove Azure.AI.OpenAI dependency from templates and tests by @Copilot in Remove Azure.AI.OpenAI dependency from templates and tests dotnet/extensions#6873
Remove UnsafeRelaxedJsonEscaping by @peterwald in Remove UnsafeRelaxedJsonEscaping dotnet/extensions#6899
Fix bug to yield remaining buffered FCC by @westey-m in https://github.com/dotnet/extens...

Description has been truncated

Bumps Aspire.Hosting.NodeJs from 9.2.1 to 9.5.2 Bumps Aspire.Microsoft.EntityFrameworkCore.SqlServer from 9.2.1 to 9.5.2 Bumps Microsoft.AspNetCore.OpenApi from 9.0.5 to 9.0.10 Bumps Microsoft.EntityFrameworkCore.Design from 9.0.5 to 9.0.10 Bumps Microsoft.Extensions.Http.Resilience from 9.5.0 to 9.10.0 Bumps Microsoft.Extensions.ServiceDiscovery from 9.2.1 to 9.5.2 Bumps Newtonsoft.Json from 13.0.3 to 13.0.4 Bumps OpenTelemetry.Exporter.OpenTelemetryProtocol from 1.12.0 to 1.13.1 Bumps OpenTelemetry.Extensions.Hosting from 1.12.0 to 1.13.1 Bumps OpenTelemetry.Instrumentation.AspNetCore from 1.12.0 to 1.13.0 Bumps OpenTelemetry.Instrumentation.Http from 1.12.0 to 1.13.0 Bumps OpenTelemetry.Instrumentation.Runtime from 1.12.0 to 1.13.0 Bumps Swashbuckle.AspNetCore from 8.1.1 to 9.0.6 --- updated-dependencies: - dependency-name: Aspire.Hosting.NodeJs dependency-version: 9.5.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-updates - dependency-name: Aspire.Microsoft.EntityFrameworkCore.SqlServer dependency-version: 9.5.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-updates - dependency-name: Microsoft.AspNetCore.OpenApi dependency-version: 9.0.10 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-updates - dependency-name: Microsoft.EntityFrameworkCore.Design dependency-version: 9.0.10 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-updates - dependency-name: Microsoft.Extensions.Http.Resilience dependency-version: 9.10.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-updates - dependency-name: Microsoft.Extensions.Http.Resilience dependency-version: 9.10.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-updates - dependency-name: Microsoft.Extensions.ServiceDiscovery dependency-version: 9.5.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-updates - dependency-name: Microsoft.Extensions.ServiceDiscovery dependency-version: 9.5.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-updates - dependency-name: Newtonsoft.Json dependency-version: 13.0.4 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-updates - dependency-name: OpenTelemetry.Exporter.OpenTelemetryProtocol dependency-version: 1.13.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-updates - dependency-name: OpenTelemetry.Exporter.OpenTelemetryProtocol dependency-version: 1.13.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-updates - dependency-name: OpenTelemetry.Extensions.Hosting dependency-version: 1.13.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-updates - dependency-name: OpenTelemetry.Extensions.Hosting dependency-version: 1.13.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-updates - dependency-name: OpenTelemetry.Instrumentation.AspNetCore dependency-version: 1.13.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-updates - dependency-name: OpenTelemetry.Instrumentation.AspNetCore dependency-version: 1.13.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-updates - dependency-name: OpenTelemetry.Instrumentation.Http dependency-version: 1.13.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-updates - dependency-name: OpenTelemetry.Instrumentation.Http dependency-version: 1.13.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-updates - dependency-name: OpenTelemetry.Instrumentation.Runtime dependency-version: 1.13.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-updates - dependency-name: OpenTelemetry.Instrumentation.Runtime dependency-version: 1.13.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-updates - dependency-name: Swashbuckle.AspNetCore dependency-version: 9.0.6 dependency-type: direct:production update-type: version-update:semver-major dependency-group: all-updates ... Signed-off-by: dependabot[bot] <[email protected]>

github-actions · 2025-10-24T07:24:46Z

⚠️ Deprecation Warning: The deny-licenses option is deprecated for possible removal in the next major release. For more information, see issue 997.

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

Snapshot Warnings

⚠️: No snapshots were found for the head SHA b551068.

Ensure that dependencies are being submitted on PR branches and consider enabling retry-on-snapshot-warnings. See the documentation for more information and troubleshooting advice.

OpenSSF Scorecard

Scorecard details

Package

Version

Score

Details

nuget/Aspire.Hosting.NodeJs

9.5.2

Unknown

nuget/Aspire.Microsoft.EntityFrameworkCore.SqlServer

9.5.2

Unknown

nuget/Microsoft.AspNetCore.OpenApi

9.0.10

Unknown

nuget/Microsoft.EntityFrameworkCore.Design

9.0.10

🟢 6.6

Details

Check	Score	Reason
Code-Review	🟢 10	all changesets reviewed
Packaging	⚠️ -1	packaging workflow not detected
Maintained	🟢 10	30 commit(s) and 15 issue activity found in the last 90 days -- score normalized to 10
Security-Policy	🟢 10	security policy file detected
Token-Permissions	⚠️ 0	detected GitHub workflow tokens with excessive permissions
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
License	🟢 10	license file detected
Fuzzing	⚠️ 0	project is not fuzzed
Vulnerabilities	🟢 10	0 existing vulnerabilities detected
Branch-Protection	⚠️ -1	internal error: error during branchesHandler.setup: internal error: some github tokens can't read classic branch protection rules: https://github.com/ossf/scorecard-action/blob/main/docs/authentication/fine-grained-auth-token.md
Signed-Releases	⚠️ -1	no releases found
Binary-Artifacts	🟢 10	no binaries found in the repo
Pinned-Dependencies	⚠️ 0	dependency not pinned by hash detected -- score normalized to 0
SAST	⚠️ 0	SAST tool is not run on all commits -- score normalized to 0

nuget/Microsoft.Extensions.Http.Resilience

9.10.0

🟢 6.6

Details

Check	Score	Reason
Maintained	🟢 10	30 commit(s) and 20 issue activity found in the last 90 days -- score normalized to 10
Code-Review	🟢 8	Found 16/18 approved changesets -- score normalized to 8
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
Packaging	⚠️ -1	packaging workflow not detected
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Token-Permissions	⚠️ 0	detected GitHub workflow tokens with excessive permissions
License	🟢 10	license file detected
Fuzzing	⚠️ 0	project is not fuzzed
Security-Policy	🟢 10	security policy file detected
Branch-Protection	🟢 5	branch protection is not maximal on development and all release branches
Signed-Releases	⚠️ -1	no releases found
Binary-Artifacts	🟢 10	no binaries found in the repo
Pinned-Dependencies	🟢 9	dependency not pinned by hash detected -- score normalized to 9
SAST	⚠️ 0	SAST tool is not run on all commits -- score normalized to 0
Vulnerabilities	🟢 8	2 existing vulnerabilities detected

nuget/Microsoft.Extensions.ServiceDiscovery

9.5.2

Unknown

nuget/Newtonsoft.Json

13.0.4

🟢 5.5

Details

Check	Score	Reason
Code-Review	🟢 5	Found 15/30 approved changesets -- score normalized to 5
Packaging	⚠️ -1	packaging workflow not detected
Maintained	🟢 3	3 commit(s) and 1 issue activity found in the last 90 days -- score normalized to 3
Token-Permissions	🟢 9	detected GitHub workflow tokens with excessive permissions
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
Binary-Artifacts	🟢 10	no binaries found in the repo
Security-Policy	⚠️ 0	security policy file not detected
Vulnerabilities	🟢 10	0 existing vulnerabilities detected
Fuzzing	⚠️ 0	project is not fuzzed
License	🟢 10	license file detected
Pinned-Dependencies	⚠️ 0	dependency not pinned by hash detected -- score normalized to 0
Signed-Releases	⚠️ 0	Project has not signed or included provenance with any releases.
Branch-Protection	⚠️ -1	internal error: error during branchesHandler.setup: internal error: some github tokens can't read classic branch protection rules: https://github.com/ossf/scorecard-action/blob/main/docs/authentication/fine-grained-auth-token.md
SAST	🟢 8	SAST tool detected but not run on all commits

nuget/OpenTelemetry.Exporter.OpenTelemetryProtocol

1.13.1

🟢 8.5

Details

Check	Score	Reason
Dependency-Update-Tool	🟢 10	update tool detected
Maintained	🟢 10	30 commit(s) and 22 issue activity found in the last 90 days -- score normalized to 10
Code-Review	🟢 10	all changesets reviewed
Binary-Artifacts	🟢 10	no binaries found in the repo
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Pinned-Dependencies	🟢 10	all dependencies are pinned
Token-Permissions	🟢 10	GitHub workflow tokens follow principle of least privilege
License	🟢 10	license file detected
CII-Best-Practices	🟢 5	badge detected: Passing
Signed-Releases	⚠️ 0	Project has not signed or included provenance with any releases.
Vulnerabilities	🟢 10	0 existing vulnerabilities detected
Packaging	🟢 10	packaging workflow detected
SAST	🟢 10	SAST tool is run on all commits
Security-Policy	🟢 10	security policy file detected
Fuzzing	⚠️ 0	project is not fuzzed
Branch-Protection	🟢 8	branch protection is not maximal on development and all release branches
CI-Tests	🟢 10	30 out of 30 merged PRs checked by a CI test -- score normalized to 10
Contributors	🟢 10	project has 39 contributing companies or organizations

nuget/OpenTelemetry.Extensions.Hosting

1.13.1

🟢 8.5

Details

Check	Score	Reason
Dependency-Update-Tool	🟢 10	update tool detected
Maintained	🟢 10	30 commit(s) and 22 issue activity found in the last 90 days -- score normalized to 10
Code-Review	🟢 10	all changesets reviewed
Binary-Artifacts	🟢 10	no binaries found in the repo
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Pinned-Dependencies	🟢 10	all dependencies are pinned
Token-Permissions	🟢 10	GitHub workflow tokens follow principle of least privilege
License	🟢 10	license file detected
CII-Best-Practices	🟢 5	badge detected: Passing
Signed-Releases	⚠️ 0	Project has not signed or included provenance with any releases.
Vulnerabilities	🟢 10	0 existing vulnerabilities detected
Packaging	🟢 10	packaging workflow detected
SAST	🟢 10	SAST tool is run on all commits
Security-Policy	🟢 10	security policy file detected
Fuzzing	⚠️ 0	project is not fuzzed
Branch-Protection	🟢 8	branch protection is not maximal on development and all release branches
CI-Tests	🟢 10	30 out of 30 merged PRs checked by a CI test -- score normalized to 10
Contributors	🟢 10	project has 39 contributing companies or organizations

nuget/OpenTelemetry.Instrumentation.AspNetCore

1.13.0

🟢 8.5

Details

Check	Score	Reason
Dependency-Update-Tool	🟢 10	update tool detected
Maintained	🟢 10	30 commit(s) and 27 issue activity found in the last 90 days -- score normalized to 10
Code-Review	🟢 10	all changesets reviewed
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Token-Permissions	🟢 10	GitHub workflow tokens follow principle of least privilege
CII-Best-Practices	🟢 5	badge detected: Passing
Binary-Artifacts	🟢 10	no binaries found in the repo
Pinned-Dependencies	🟢 9	dependency not pinned by hash detected -- score normalized to 9
License	🟢 10	license file detected
Vulnerabilities	🟢 10	0 existing vulnerabilities detected
SAST	🟢 10	SAST tool is run on all commits
Signed-Releases	⚠️ 0	Project has not signed or included provenance with any releases.
Fuzzing	⚠️ 0	project is not fuzzed
Branch-Protection	🟢 8	branch protection is not maximal on development and all release branches
Security-Policy	🟢 10	security policy file detected
Packaging	🟢 10	packaging workflow detected
CI-Tests	🟢 10	30 out of 30 merged PRs checked by a CI test -- score normalized to 10
Contributors	🟢 10	project has 20 contributing companies or organizations

nuget/OpenTelemetry.Instrumentation.Http

1.13.0

🟢 8.5

Details

Check	Score	Reason
Dependency-Update-Tool	🟢 10	update tool detected
Maintained	🟢 10	30 commit(s) and 27 issue activity found in the last 90 days -- score normalized to 10
Code-Review	🟢 10	all changesets reviewed
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Token-Permissions	🟢 10	GitHub workflow tokens follow principle of least privilege
CII-Best-Practices	🟢 5	badge detected: Passing
Binary-Artifacts	🟢 10	no binaries found in the repo
Pinned-Dependencies	🟢 9	dependency not pinned by hash detected -- score normalized to 9
License	🟢 10	license file detected
Vulnerabilities	🟢 10	0 existing vulnerabilities detected
SAST	🟢 10	SAST tool is run on all commits
Signed-Releases	⚠️ 0	Project has not signed or included provenance with any releases.
Fuzzing	⚠️ 0	project is not fuzzed
Branch-Protection	🟢 8	branch protection is not maximal on development and all release branches
Security-Policy	🟢 10	security policy file detected
Packaging	🟢 10	packaging workflow detected
CI-Tests	🟢 10	30 out of 30 merged PRs checked by a CI test -- score normalized to 10
Contributors	🟢 10	project has 20 contributing companies or organizations

nuget/OpenTelemetry.Instrumentation.Runtime

1.13.0

🟢 8.5

Details

Check	Score	Reason
Dependency-Update-Tool	🟢 10	update tool detected
Maintained	🟢 10	30 commit(s) and 27 issue activity found in the last 90 days -- score normalized to 10
Code-Review	🟢 10	all changesets reviewed
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Token-Permissions	🟢 10	GitHub workflow tokens follow principle of least privilege
CII-Best-Practices	🟢 5	badge detected: Passing
Binary-Artifacts	🟢 10	no binaries found in the repo
Pinned-Dependencies	🟢 9	dependency not pinned by hash detected -- score normalized to 9
License	🟢 10	license file detected
Vulnerabilities	🟢 10	0 existing vulnerabilities detected
SAST	🟢 10	SAST tool is run on all commits
Signed-Releases	⚠️ 0	Project has not signed or included provenance with any releases.
Fuzzing	⚠️ 0	project is not fuzzed
Branch-Protection	🟢 8	branch protection is not maximal on development and all release branches
Security-Policy	🟢 10	security policy file detected
Packaging	🟢 10	packaging workflow detected
CI-Tests	🟢 10	30 out of 30 merged PRs checked by a CI test -- score normalized to 10
Contributors	🟢 10	project has 20 contributing companies or organizations

nuget/Swashbuckle.AspNetCore

9.0.6

🟢 7.8

Details

Check	Score	Reason
Code-Review	⚠️ 0	Found 0/4 approved changesets -- score normalized to 0
Dependency-Update-Tool	🟢 10	update tool detected
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Security-Policy	🟢 10	security policy file detected
Maintained	🟢 10	30 commit(s) and 19 issue activity found in the last 90 days -- score normalized to 10
Token-Permissions	🟢 10	GitHub workflow tokens follow principle of least privilege
Pinned-Dependencies	🟢 10	all dependencies are pinned
Binary-Artifacts	🟢 10	no binaries found in the repo
Vulnerabilities	🟢 10	0 existing vulnerabilities detected
CII-Best-Practices	🟢 5	badge detected: Passing
SAST	🟢 10	SAST tool is run on all commits
License	🟢 10	license file detected
Fuzzing	⚠️ 0	project is not fuzzed
Signed-Releases	⚠️ 0	Project has not signed or included provenance with any releases.
Branch-Protection	⚠️ -1	internal error: error during branchesHandler.setup: internal error: some github tokens can't read classic branch protection rules: https://github.com/ossf/scorecard-action/blob/main/docs/authentication/fine-grained-auth-token.md
Packaging	🟢 10	packaging workflow detected
CI-Tests	🟢 10	27 out of 27 merged PRs checked by a CI test -- score normalized to 10
Contributors	🟢 10	project has 54 contributing companies or organizations

nuget/Microsoft.Extensions.Http.Resilience

9.10.0

🟢 6.6

Details

Check	Score	Reason
Maintained	🟢 10	30 commit(s) and 20 issue activity found in the last 90 days -- score normalized to 10
Code-Review	🟢 8	Found 16/18 approved changesets -- score normalized to 8
CII-Best-Practices	⚠️ 0	no effort to earn an OpenSSF best practices badge detected
Packaging	⚠️ -1	packaging workflow not detected
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Token-Permissions	⚠️ 0	detected GitHub workflow tokens with excessive permissions
License	🟢 10	license file detected
Fuzzing	⚠️ 0	project is not fuzzed
Security-Policy	🟢 10	security policy file detected
Branch-Protection	🟢 5	branch protection is not maximal on development and all release branches
Signed-Releases	⚠️ -1	no releases found
Binary-Artifacts	🟢 10	no binaries found in the repo
Pinned-Dependencies	🟢 9	dependency not pinned by hash detected -- score normalized to 9
SAST	⚠️ 0	SAST tool is not run on all commits -- score normalized to 0
Vulnerabilities	🟢 8	2 existing vulnerabilities detected

nuget/Microsoft.Extensions.ServiceDiscovery

9.5.2

Unknown

nuget/OpenTelemetry.Exporter.OpenTelemetryProtocol

1.13.1

🟢 8.5

Details

Check	Score	Reason
Dependency-Update-Tool	🟢 10	update tool detected
Maintained	🟢 10	30 commit(s) and 22 issue activity found in the last 90 days -- score normalized to 10
Code-Review	🟢 10	all changesets reviewed
Binary-Artifacts	🟢 10	no binaries found in the repo
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Pinned-Dependencies	🟢 10	all dependencies are pinned
Token-Permissions	🟢 10	GitHub workflow tokens follow principle of least privilege
License	🟢 10	license file detected
CII-Best-Practices	🟢 5	badge detected: Passing
Signed-Releases	⚠️ 0	Project has not signed or included provenance with any releases.
Vulnerabilities	🟢 10	0 existing vulnerabilities detected
Packaging	🟢 10	packaging workflow detected
SAST	🟢 10	SAST tool is run on all commits
Security-Policy	🟢 10	security policy file detected
Fuzzing	⚠️ 0	project is not fuzzed
Branch-Protection	🟢 8	branch protection is not maximal on development and all release branches
CI-Tests	🟢 10	30 out of 30 merged PRs checked by a CI test -- score normalized to 10
Contributors	🟢 10	project has 39 contributing companies or organizations

nuget/OpenTelemetry.Extensions.Hosting

1.13.1

🟢 8.5

Details

Check	Score	Reason
Dependency-Update-Tool	🟢 10	update tool detected
Maintained	🟢 10	30 commit(s) and 22 issue activity found in the last 90 days -- score normalized to 10
Code-Review	🟢 10	all changesets reviewed
Binary-Artifacts	🟢 10	no binaries found in the repo
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Pinned-Dependencies	🟢 10	all dependencies are pinned
Token-Permissions	🟢 10	GitHub workflow tokens follow principle of least privilege
License	🟢 10	license file detected
CII-Best-Practices	🟢 5	badge detected: Passing
Signed-Releases	⚠️ 0	Project has not signed or included provenance with any releases.
Vulnerabilities	🟢 10	0 existing vulnerabilities detected
Packaging	🟢 10	packaging workflow detected
SAST	🟢 10	SAST tool is run on all commits
Security-Policy	🟢 10	security policy file detected
Fuzzing	⚠️ 0	project is not fuzzed
Branch-Protection	🟢 8	branch protection is not maximal on development and all release branches
CI-Tests	🟢 10	30 out of 30 merged PRs checked by a CI test -- score normalized to 10
Contributors	🟢 10	project has 39 contributing companies or organizations

nuget/OpenTelemetry.Instrumentation.AspNetCore

1.13.0

🟢 8.5

Details

Check	Score	Reason
Dependency-Update-Tool	🟢 10	update tool detected
Maintained	🟢 10	30 commit(s) and 27 issue activity found in the last 90 days -- score normalized to 10
Code-Review	🟢 10	all changesets reviewed
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Token-Permissions	🟢 10	GitHub workflow tokens follow principle of least privilege
CII-Best-Practices	🟢 5	badge detected: Passing
Binary-Artifacts	🟢 10	no binaries found in the repo
Pinned-Dependencies	🟢 9	dependency not pinned by hash detected -- score normalized to 9
License	🟢 10	license file detected
Vulnerabilities	🟢 10	0 existing vulnerabilities detected
SAST	🟢 10	SAST tool is run on all commits
Signed-Releases	⚠️ 0	Project has not signed or included provenance with any releases.
Fuzzing	⚠️ 0	project is not fuzzed
Branch-Protection	🟢 8	branch protection is not maximal on development and all release branches
Security-Policy	🟢 10	security policy file detected
Packaging	🟢 10	packaging workflow detected
CI-Tests	🟢 10	30 out of 30 merged PRs checked by a CI test -- score normalized to 10
Contributors	🟢 10	project has 20 contributing companies or organizations

nuget/OpenTelemetry.Instrumentation.Http

1.13.0

🟢 8.5

Details

Check	Score	Reason
Dependency-Update-Tool	🟢 10	update tool detected
Maintained	🟢 10	30 commit(s) and 27 issue activity found in the last 90 days -- score normalized to 10
Code-Review	🟢 10	all changesets reviewed
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Token-Permissions	🟢 10	GitHub workflow tokens follow principle of least privilege
CII-Best-Practices	🟢 5	badge detected: Passing
Binary-Artifacts	🟢 10	no binaries found in the repo
Pinned-Dependencies	🟢 9	dependency not pinned by hash detected -- score normalized to 9
License	🟢 10	license file detected
Vulnerabilities	🟢 10	0 existing vulnerabilities detected
SAST	🟢 10	SAST tool is run on all commits
Signed-Releases	⚠️ 0	Project has not signed or included provenance with any releases.
Fuzzing	⚠️ 0	project is not fuzzed
Branch-Protection	🟢 8	branch protection is not maximal on development and all release branches
Security-Policy	🟢 10	security policy file detected
Packaging	🟢 10	packaging workflow detected
CI-Tests	🟢 10	30 out of 30 merged PRs checked by a CI test -- score normalized to 10
Contributors	🟢 10	project has 20 contributing companies or organizations

nuget/OpenTelemetry.Instrumentation.Runtime

1.13.0

🟢 8.5

Details

Check	Score	Reason
Dependency-Update-Tool	🟢 10	update tool detected
Maintained	🟢 10	30 commit(s) and 27 issue activity found in the last 90 days -- score normalized to 10
Code-Review	🟢 10	all changesets reviewed
Dangerous-Workflow	🟢 10	no dangerous workflow patterns detected
Token-Permissions	🟢 10	GitHub workflow tokens follow principle of least privilege
CII-Best-Practices	🟢 5	badge detected: Passing
Binary-Artifacts	🟢 10	no binaries found in the repo
Pinned-Dependencies	🟢 9	dependency not pinned by hash detected -- score normalized to 9
License	🟢 10	license file detected
Vulnerabilities	🟢 10	0 existing vulnerabilities detected
SAST	🟢 10	SAST tool is run on all commits
Signed-Releases	⚠️ 0	Project has not signed or included provenance with any releases.
Fuzzing	⚠️ 0	project is not fuzzed
Branch-Protection	🟢 8	branch protection is not maximal on development and all release branches
Security-Policy	🟢 10	security policy file detected
Packaging	🟢 10	packaging workflow detected
CI-Tests	🟢 10	30 out of 30 merged PRs checked by a CI test -- score normalized to 10
Contributors	🟢 10	project has 20 contributing companies or organizations

Scanned Files

AspireSample/AspireSample.ApiService/AspireSample.ApiService.csproj
AspireSample/AspireSample.ServiceDefaults/AspireSample.ServiceDefaults.csproj

dependabot bot added .NET Pull requests that update .NET code dependencies Pull requests that update a dependency file labels Oct 24, 2025

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Bump Aspire.Hosting.NodeJs and 12 others #104

Bump Aspire.Hosting.NodeJs and 12 others #104

Uh oh!

dependabot bot commented on behalf of github Oct 24, 2025

Uh oh!

github-actions bot commented Oct 24, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Bump Aspire.Hosting.NodeJs and 12 others #104

Are you sure you want to change the base?

Bump Aspire.Hosting.NodeJs and 12 others #104

Uh oh!

Conversation

dependabot bot commented on behalf of github Oct 24, 2025

9.5.2

What's Changed

9.5.1

What's Changed

9.5.0

New Contributors

9.4.2

What's Changed

9.4.1

What's Changed

9.4.0

What's Changed

9.3.2

What's Changed

9.3.1

What's Changed

9.3.0

What's Changed

9.5.2

What's Changed

9.5.1

What's Changed

9.5.0

New Contributors

9.4.2

What's Changed

9.4.1

What's Changed

9.4.0

What's Changed

9.3.2

What's Changed

9.3.1

What's Changed

9.3.0

What's Changed

9.0.10

What's Changed

9.0.9

What's Changed

9.0.7

What's Changed

9.0.6

Bug Fixes

Dependency Updates

Miscellaneous

9.0.10

What's Changed

9.0.9

What's Changed

9.0.7

What's Changed

9.0.6

Bug Fixes

Dependency Updates

Technical Improvements

Infrastructure

Miscellaneous

9.10.0

What's Changed

Uh oh!

github-actions bot commented Oct 24, 2025

Dependency Review

Snapshot Warnings

OpenSSF Scorecard

Scanned Files

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!