Skip to content

bump: Update from main for 4.23.3 #4899

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
tracyboehrer merged 23 commits into from
Aug 26, 2025
Merged

bump: Update from main for 4.23.3 #4899

tracyboehrer merged 23 commits into from
Aug 26, 2025

Conversation

@tracyboehrer
Copy link
Member

@tracyboehrer tracyboehrer commented Aug 26, 2025
edited
Loading

#minor
4.23.3

sw-joelmut and others added 23 commits March 7, 2025 08:16
@sw-joelmut
Fix actions/cache deprecation (#4858)
87d0ad1
@ceciliaavila
fix: Update generators and remove Core Bot templates (#4867)
66578b0 
* Update empty bot templates

* Update echo bot templates

* Remove core bot templates and its references

* Fix unit tests
@dependabot
chore(deps): bump elliptic from 6.6.0 to 6.6.1 (#4863)
8a1941d 
Bumps [elliptic](https://github.com/indutny/elliptic) from 6.6.0 to 6.6.1.
- [Commits](indutny/elliptic@v6.6.0...v6.6.1)

---
updated-dependencies:
- dependency-name: elliptic
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@sw-joelmut
refactor: [#4759] Migrate off @azure/core-http (#4834)
157e1e7 
* Migrate deprecated core-http to new libraries

* Fix ESLint

* Remove unused dependency

* Fix node_modules pathing

* Remove unused folder declaration

* Fix TypeScript modifying .js and .d.ts files

* Fix eslint
@sw-joelmut
Update elliptic, esbuild, and serialize-javascript (#4862)
b8501c6
@sw-joelmut
fix: [#4853] ConfigurationBotFrameworkAuthentication errors when init…
702a41f 
…ialized with process.env (#4857)

* Fix config options type to support process.env

* Fix eslint

* Fix test:compat
@ceciliaavila
Allow null value for Configuration parameter (#4856)
bac622b
@dependabot
chore(deps): bump axios from 1.7.7 to 1.8.2 (#4869)
0e5b666 
Bumps [axios](https://github.com/axios/axios) from 1.7.7 to 1.8.2.
- [Release notes](https://github.com/axios/axios/releases)
- [Changelog](https://github.com/axios/axios/blob/v1.x/CHANGELOG.md)
- [Commits](axios/axios@v1.7.7...v1.8.2)

---
updated-dependencies:
- dependency-name: axios
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@sw-joelmut @ceciliaavila
Update babel-runtime (#4868)
44128f0 
Co-authored-by: Cecilia Avila <[email protected]>
@bentsai10
fix: Add signInSso cardviewType to SignInCardViewParameters (#4872)
2612216 
* initial commit

* update api md file

---------

Co-authored-by: bentsai <[email protected]>
@dependabot
chore(deps): bump tar-fs from 2.1.1 to 2.1.2 (#4871)
8dcfcdd 
Bumps [tar-fs](https://github.com/mafintosh/tar-fs) from 2.1.1 to 2.1.2.
- [Commits](mafintosh/tar-fs@v2.1.1...v2.1.2)

---
updated-dependencies:
- dependency-name: tar-fs
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@ceciliaavila
Bump pbkdf2 version to fix issue (#4891)
c3d2c70
@ceciliaavila
fix: CodeQL issues with severity High (#4892)
5f6a055 
* Fix issue in transcriptUtilities

* Fix codeql issue in parameterizedBotFrameworkAuthentication

* Fix codeql issue in jwtTokenValidation

* Fix codeql issue in channelServiceHandler

* Fix condition

* Use same logic in JwtTokenValidation_authenticateRequest

* Fix failing unit test
@sw-joelmut @ceciliaavila
port: CQA to support TokenCredential instead of key (#4879)
e66246e 
* Add MSI support for CQA

* Apply minor improvements

* Fix previous implementation wrong error message

* Fix validation of parameters

---------

Co-authored-by: CeciliaAvila <[email protected]>
@dependabot
chore(deps): bump tmp from 0.2.3 to 0.2.4 (#4895)
8de1b9d 
Bumps [tmp](https://github.com/raszi/node-tmp) from 0.2.3 to 0.2.4.
- [Changelog](https://github.com/raszi/node-tmp/blob/master/CHANGELOG.md)
- [Commits](raszi/node-tmp@v0.2.3...v0.2.4)

---
updated-dependencies:
- dependency-name: tmp
  dependency-version: 0.2.4
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@dependabot
chore(deps): bump pbkdf2 from 3.1.1 to 3.1.3 (#4888)
5a1f9c7 
Bumps [pbkdf2](https://github.com/crypto-browserify/pbkdf2) from 3.1.1 to 3.1.3.
- [Changelog](https://github.com/browserify/pbkdf2/blob/master/CHANGELOG.md)
- [Commits](browserify/pbkdf2@v3.1.1...v3.1.3)

---
updated-dependencies:
- dependency-name: pbkdf2
  dependency-version: 3.1.3
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
@ceciliaavila
fix: CodeQL issues with Medium and Error severity (#4893)
f8f8d90 
* Fix codeql issue in channelServiceRoutes

* Fix codeql issue in dialogs tests

* Extend timeout for failing unit test

* Replace console.log with console.error
@ceciliaavila
feat: Enable configuration of the OpenIdmetadata's refresh interval (#…
eb26fb2 
…4877)

* Add tokenRefreshInterval to ConnectorClientOptions

* Add unit tests

* Add documentation to new property.
@ceciliaavila
bump: dependencies to safe versions (#4896)
5a10b1d 
* Bump dependencies to safe versions

* Add flag to avoid test failing in Node > 22.18

* Add flag to avoid test failing in Node > 22.18 to test:min
@ceciliaavila
Mark activity as optional in ConversationParameters (#4873)
733c8a1
@ceciliaavila
fix: [#4840] The use of the package browserify-sign could violate Mic…
8b24e02 
…rosoft crypto policy (#4875)

* Replace crypto-browserify with Web Crypto API

* Fix conflicts in yarn.lock file

* Fix yarn.lock versions
@ceciliaavila
feat: [#4894] Add support for typescript 5.9 (#4897)
cef226d 
* Update TS and types/node versions

* Fix issue in INodeBuffer

* Update test:consumer testing matrix
@ceciliaavila
fix: Remaining CodeQL issues (#4898)
37b324c 
* Fix remaining codeQL issues

* Rephrase suppression message in storage
@tracyboehrer tracyboehrer changed the title Tracyboehrer/main to 4.23 bump: Update from main for 4.23.3 Aug 26, 2025
@tracyboehrer tracyboehrer merged commit 0ca2d23 into releases/4.23 Aug 26, 2025
15 of 18 checks passed
@tracyboehrer tracyboehrer deleted the tracyboehrer/main-to-4.23 branch August 26, 2025 13:07
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@tracyboehrer @sw-joelmut @ceciliaavila @bentsai10