Skip to content

Bump the nuget-deps group with 14 updates#1592

Merged
vazois merged 11 commits into
mainfrom
dependabot/nuget/nuget-deps-4ed949ffaf
Mar 4, 2026
Merged

Bump the nuget-deps group with 14 updates#1592
vazois merged 11 commits into
mainfrom
dependabot/nuget/nuget-deps-4ed949ffaf

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Mar 2, 2026

Copy link
Copy Markdown
Contributor

Updated Microsoft.Extensions.Configuration.Binder from 10.0.2 to 10.0.3.

Release notes

Sourced from Microsoft.Extensions.Configuration.Binder's releases.

No release notes found for this version range.

Commits viewable in compare view.

Updated Microsoft.Extensions.Configuration.Json from 10.0.2 to 10.0.3.

Release notes

Sourced from Microsoft.Extensions.Configuration.Json's releases.

No release notes found for this version range.

Commits viewable in compare view.

Updated Microsoft.Extensions.Logging from 10.0.2 to 10.0.3.

Release notes

Sourced from Microsoft.Extensions.Logging's releases.

No release notes found for this version range.

Commits viewable in compare view.

Updated Microsoft.Extensions.Logging.Configuration from 9.0.8 to 10.0.3.

Release notes

Sourced from Microsoft.Extensions.Logging.Configuration's releases.

10.0.0-preview.6.25358.103

You can build .NET 10.0 Preview 6 from the repository by cloning the release tag v10.0.0-preview.6.25358.103 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached are PGP signatures for the GitHub generated tarball and zipball. You can find the public key at https://dot.net/release-key-2023

10.0.0-preview.5.25277.114

You can build .NET 10.0 Preview 5 from the repository by cloning the release tag v10.0.0-preview.5.25277.114 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached are PGP signatures for the GitHub generated tarball and zipball. You can find the public key at https://dot.net/release-key-2023

10.0.0-preview.4.25258.110

You can build .NET 10.0 Preview 4 from the repository by cloning the release tag v10.0.0-preview.4.25258.110 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached are PGP signatures for the GitHub generated tarball and zipball. You can find the public key at https://dot.net/release-key-2023

10.0.0-preview.3.25171.5

You can build .NET 10.0 Preview 3 from the repository by cloning the release tag v10.0.0-preview.3.25171.5 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached are PGP signatures for the GitHub generated tarball and zipball. You can find the public key at https://dot.net/release-key-2023

10.0.0-preview.2.25163.2

You can build .NET 10.0 Preview 2 from the repository by cloning the release tag v10.0.0-preview.2.25163.2 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached are PGP signatures for the GitHub generated tarball and zipball. You can find the public key at https://dot.net/release-key-2023

10.0.0-preview.1.25080.5

You can build .NET 10.0 Preview 1 from the repository by cloning the release tag v10.0.0-preview.1.25080.5 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached are PGP signatures for the GitHub generated tarball and zipball. You can find the public key at https://dot.net/release-key-2023

9.0.114

You can build .NET 9.0 from the repository by cloning the release tag v9.0.114 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached is the PGP signature for the GitHub generated tarball. You can find the public key at https://dot.net/release-key-2023

9.0.113

You can build .NET 9.0 from the repository by cloning the release tag v9.0.113 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached are PGP signatures for the GitHub generated tarball and zipball. You can find the public key at https://dot.net/release-key-2023

9.0.112

You can build .NET 9.0 from the repository by cloning the release tag v9.0.112 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached are PGP signatures for the GitHub generated tarball and zipball. You can find the public key at https://dot.net/release-key-2023

9.0.111

You can build .NET 9.0 from the repository by cloning the release tag v9.0.111 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached are PGP signatures for the GitHub generated tarball and zipball. You can find the public key at https://dot.net/release-key-2023

9.0.110

You can build .NET 9.0 from the repository by cloning the release tag v9.0.110 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached are PGP signatures for the GitHub generated tarball and zipball. You can find the public key at https://dot.net/release-key-2023

9.0.109

You can build .NET 9.0 from the repository by cloning the release tag v9.0.109 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached are PGP signatures for the GitHub generated tarball and zipball. You can find the public key at https://dot.net/release-key-2023

9.0.101

You can build .NET 9.0 from the repository by cloning the release tag v9.0.101 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached are PGP signatures for the GitHub generated tarball and zipball. You can find the public key at https://dot.net/release-key-2023

Commits viewable in compare view.

Updated Microsoft.Extensions.Logging.Console from 9.0.8 to 10.0.3.

Release notes

Sourced from Microsoft.Extensions.Logging.Console's releases.

10.0.0-preview.6.25358.103

You can build .NET 10.0 Preview 6 from the repository by cloning the release tag v10.0.0-preview.6.25358.103 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached are PGP signatures for the GitHub generated tarball and zipball. You can find the public key at https://dot.net/release-key-2023

10.0.0-preview.5.25277.114

You can build .NET 10.0 Preview 5 from the repository by cloning the release tag v10.0.0-preview.5.25277.114 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached are PGP signatures for the GitHub generated tarball and zipball. You can find the public key at https://dot.net/release-key-2023

10.0.0-preview.4.25258.110

You can build .NET 10.0 Preview 4 from the repository by cloning the release tag v10.0.0-preview.4.25258.110 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached are PGP signatures for the GitHub generated tarball and zipball. You can find the public key at https://dot.net/release-key-2023

10.0.0-preview.3.25171.5

You can build .NET 10.0 Preview 3 from the repository by cloning the release tag v10.0.0-preview.3.25171.5 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached are PGP signatures for the GitHub generated tarball and zipball. You can find the public key at https://dot.net/release-key-2023

10.0.0-preview.2.25163.2

You can build .NET 10.0 Preview 2 from the repository by cloning the release tag v10.0.0-preview.2.25163.2 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached are PGP signatures for the GitHub generated tarball and zipball. You can find the public key at https://dot.net/release-key-2023

10.0.0-preview.1.25080.5

You can build .NET 10.0 Preview 1 from the repository by cloning the release tag v10.0.0-preview.1.25080.5 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached are PGP signatures for the GitHub generated tarball and zipball. You can find the public key at https://dot.net/release-key-2023

9.0.114

You can build .NET 9.0 from the repository by cloning the release tag v9.0.114 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached is the PGP signature for the GitHub generated tarball. You can find the public key at https://dot.net/release-key-2023

9.0.113

You can build .NET 9.0 from the repository by cloning the release tag v9.0.113 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached are PGP signatures for the GitHub generated tarball and zipball. You can find the public key at https://dot.net/release-key-2023

9.0.112

You can build .NET 9.0 from the repository by cloning the release tag v9.0.112 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached are PGP signatures for the GitHub generated tarball and zipball. You can find the public key at https://dot.net/release-key-2023

9.0.111

You can build .NET 9.0 from the repository by cloning the release tag v9.0.111 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached are PGP signatures for the GitHub generated tarball and zipball. You can find the public key at https://dot.net/release-key-2023

9.0.110

You can build .NET 9.0 from the repository by cloning the release tag v9.0.110 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached are PGP signatures for the GitHub generated tarball and zipball. You can find the public key at https://dot.net/release-key-2023

9.0.109

You can build .NET 9.0 from the repository by cloning the release tag v9.0.109 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached are PGP signatures for the GitHub generated tarball and zipball. You can find the public key at https://dot.net/release-key-2023

9.0.101

You can build .NET 9.0 from the repository by cloning the release tag v9.0.101 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached are PGP signatures for the GitHub generated tarball and zipball. You can find the public key at https://dot.net/release-key-2023

Commits viewable in compare view.

Updated Microsoft.IdentityModel.Protocols.OpenIdConnect from 8.6.1 to 8.16.0.

Release notes

Sourced from Microsoft.IdentityModel.Protocols.OpenIdConnect's releases.

8.16.0

New Features

  • Add telemetry around signature validation. See PR #​3415 for details.

Fundamentals

  • Fix FileVersion format to use two-digit year and day of year. See PR #​3389 for details.

8.15.0

New Features

  • Add ECDsa support in X509SecurityKey and JsonWebKeyConverter.ConvertFromX509SecurityKey
    Extended X509SecurityKey and JsonWebKeyConverter.ConvertFromX509SecurityKey to support ECDSA keys.
    See PR #​2377 for details.

Bug Fixes

  • Sanitize logs to avoid leaking sensitive data
    Updated logging to sanitize sensitive values, reducing the risk of inadvertently exposing secrets or PII in logs.
    See PR #​3316 for details.
  • Optimize log sanitization with SearchValues
    Improved the performance of the log sanitization logic introduced earlier by using SearchValues, making sanitization more efficient in high-throughput scenarios.
    See PR #​3341 for details.
  • Update test for IDX10400
    Adjusted the IDX10400 test to align with the current behavior and error messaging.
    See PR #​3314 for details.

Fundamentals

  • Add supported algorithm tests
    Added new tests to validate the set of supported cryptographic algorithms, increasing confidence in algorithm coverage and compatibility.
    See PR #​3296 for details.
  • Migrate repository agent rules from .clinerules to agents.md
    Moved repository agent/AI-assist rules into markdown documentation to make them more visible and easier to maintain.
    See PR #​3313 for details.
  • Migrate Microsoft.IdentityModel.TestExtensions from Newtonsoft.Json to System.Text.Json
    Updated Microsoft.IdentityModel.TestExtensions to use System.Text.Json instead of Newtonsoft.Json, aligning tests with the runtime serialization stack.
    See PR #​3356 for details.
  • Disable code coverage comments
    Turned off automated code coverage comments on PRs to reduce noise while retaining coverage data elsewhere.
    See PR #​3349 for details.
  • Fix CodeQL alerts
    Addressed CodeQL-reported issues to improve security posture and static analysis cleanliness.
    See PR #​3364 for details.

.NET 10 / SDK and tooling updates

  • Building with .NET 10 preview / RC 1
    Updated the repository to build and test against .NET 10.0 preview/RC1, ensuring early compatibility with the upcoming runtime.
    See PRs #​3287, #​3357, and #​3358 for details.
  • Fix .NET 10 test execution consistency
    Ensured consistent use of the TargetNetNext parameter across build, test, and pack phases so .NET 10.0 tests execute reliably.
    See PR #​3337 for details.
  • Update project files and workflows for .NET 10.0 compatibility
    Adjusted project files and CI workflows to correctly target and run on .NET 10.0, including test and pack scenarios.
    See PR #​3363 for details.
  • Update .NET version to meet CG compliance
    Updated the .NET version references to be compliant with corporate governance (CG) requirements.
    See PR #​3353 for details.
  • Update Coverlet collector and test SDK
    • Bumped CoverletCollectorVersion to 6.0.4.
      See PR #​3333 for details.
    • Upgraded Microsoft.NET.Test.Sdk to a newer version for improved test reliability and tooling support.
      ... (truncated)

8.14.0

8.14.0

Bug Fixes

  • Switch back to use ValidationResult instead of OperationResult when validating a token in a new experimental validation flow. Additionally removed the dependency on Microsoft.IdentityModel.Abstractions. See #​3299 for details.

8.13.1

8.13.1

Dependencies

Microsoft.IdentityModel now depends on Microsoft.Identity.Abstractions 9.3.0

Bug Fixes

  • Fixed a decompression failure happening for large JWE payloads. See #​3286 for details.

Work related to redesign of IdentityModel's token validation logic #​2711

  • Update the validation methods to return Microsoft.Identity.Abstractions.OperationResult. See #​3284 for details.

8.13.0

8.13.0

8.13.0

Fundamentals

  • CaseSensitiveClaimsIdentity.SecurityToken setter is now protected internal (was internal). See PR #​3278 for details.
  • Update .NET SDK version to 9.0.108 used when building or running the code. See PR #​3274 for details.
  • Update RsaSecurityKey.cs to replace the Pkcs1 padding by Pss from HasPrivateKey check. See #​3280 for details.

What's Changed

New Contributors

Full Changelog: AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet@8.12.1...8.13.0

8.12.1

8.12.1

Fundamentals

  • Update .NET SDK version to 9.0.107 used when building or running the code. See #​3263 for details.
  • To keep our experimental code separate from production code, all files associated with experimental features have been moved to the Experimental folders. See PR #​3261 for details.
  • Experimental code leaked into TokenValidationResult from early prototypes. See PR #​3259 for details.

What's Changed

Full Changelog: AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet@8.12.0...8.12.1

8.12.0

8.12.0

New Features

  • Enhance ConfigurationManager with event handling
    Added event handling capabilities to the ConfigurationManager, enabling consumers to subscribe to configuration change events. This enhancement improves extensibility and allows more responsive applications. For details see #​3253

Bug Fixes

  • Add expected Base64UrlEncoder.Decode overload for NET6 and 8
    Introduced the expected overload of Base64UrlEncoder.Decode for .NET 6 and 8, ensuring compatibility and preventing missing method issues on these frameworks.
    For details see #​3249

Fundamentals

  • Add AI assist rules
    Incorporated AI assist rules to enhance AI agents effectiveness.
    For details see #​3255
  • Update PublicApiAnalyzers and BannedApiAnalyzers to 4.14.0
    Upgraded analyzer packages for improved diagnostics and code consistency (in particular delegates are added).
    For details see #​3256
  • Move suppression of RS006 to csproj
    Centralized suppression of RS006 warnings in project files for easier management.
    For details see #​3230

What's Changed

Full Changelog: AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet@8.11.0...8.12.0

8.11.0

8.11.0

New Features:

  • Microsoft.IdentityModel now exposes the AadIssuerValidator factory method publicly to enable caching functionality for AadIssuerValidator instances. See issue #​3245 for details.
  • Added a new public async API: JsonWebTokenHandler.DecryptTokenWithConfigurationAsync, which decrypts a JWE token using keys from either TokenValidationParameters or, if not present, from configuration (such as via a ConfigurationManager). This enhancement improves developer experience by enabling asynchronous, cancellation-aware JWE decryption scenarios, aligning with modern .NET async patterns and making integration with external key/configuration sources more robust and observable. See PR #​3243 for details.

What's Changed

Full Changelog: AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet@8.10.0...8.11.0

8.10.0

8.10.0

Bug Fixes

  • Corrected casing of the Type attribute in SubjectConfirmationData. See #​3206.
  • Removed Microsoft.Bcl.Memory dependency for pre-.NET 9.0 targets. See #​3220.
  • Aligned Microsoft.Extensions.Logging.Abstractions version to 8.0.0 for .NET 9 to match other targets. See #​3226.

Fundamentals

8.9.0

8.9.0

Bug Fixes

New Features

Fundamentals

8.8.0

8.8.0

New Features

  • Adds the ability for the metadata refresh to be done as a blocking call, as per 8.0.1 behavior. This is done through the Switch.Microsoft.IdentityModel.UpdateConfigAsBlocking switch. If set, configuration calls will be blocking when metadata is updated, otherwise, if token arrive with a new signing keys, validation errors will be returned to the caller. See PR #​3193 for details.
  • Identity.Model updates some log and error messages (IDX10214, IDX10215). If the information is needed for debugging purposes, it can be reverted via the Switch.Microsoft.IdentityModel.DoNotScrubExceptions AppContextSwitch. See PR #​3195 and https://aka.ms/identitymodel/app-context-switches for details.
  • Change all plain object locks to System.Thread.Lock objects for .NET 9 or greater. See PRs #​3185 and #​3189 for details.

8.7.0

Bug Fixes

  • Add back internal methods IsRecoverableException and IsRecoverableExceptionType whose signatures were changed in the previous version. See #​3181.

New Features

  • Make Cnf class public and move it to Microsoft.IdentityModel.Tokens package. See #​3165.

What's Changed

New Contributors

Full Changelog: AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet@8.6.1...8.7.0

Commits viewable in compare view.

Updated Microsoft.IdentityModel.Validators from 8.6.1 to 8.16.0.

Release notes

Sourced from Microsoft.IdentityModel.Validators's releases.

8.16.0

New Features

  • Add telemetry around signature validation. See PR #​3415 for details.

Fundamentals

  • Fix FileVersion format to use two-digit year and day of year. See PR #​3389 for details.

8.15.0

New Features

  • Add ECDsa support in X509SecurityKey and JsonWebKeyConverter.ConvertFromX509SecurityKey
    Extended X509SecurityKey and JsonWebKeyConverter.ConvertFromX509SecurityKey to support ECDSA keys.
    See PR #​2377 for details.

Bug Fixes

  • Sanitize logs to avoid leaking sensitive data
    Updated logging to sanitize sensitive values, reducing the risk of inadvertently exposing secrets or PII in logs.
    See PR #​3316 for details.
  • Optimize log sanitization with SearchValues
    Improved the performance of the log sanitization logic introduced earlier by using SearchValues, making sanitization more efficient in high-throughput scenarios.
    See PR #​3341 for details.
  • Update test for IDX10400
    Adjusted the IDX10400 test to align with the current behavior and error messaging.
    See PR #​3314 for details.

Fundamentals

  • Add supported algorithm tests
    Added new tests to validate the set of supported cryptographic algorithms, increasing confidence in algorithm coverage and compatibility.
    See PR #​3296 for details.
  • Migrate repository agent rules from .clinerules to agents.md
    Moved repository agent/AI-assist rules into markdown documentation to make them more visible and easier to maintain.
    See PR #​3313 for details.
  • Migrate Microsoft.IdentityModel.TestExtensions from Newtonsoft.Json to System.Text.Json
    Updated Microsoft.IdentityModel.TestExtensions to use System.Text.Json instead of Newtonsoft.Json, aligning tests with the runtime serialization stack.
    See PR #​3356 for details.
  • Disable code coverage comments
    Turned off automated code coverage comments on PRs to reduce noise while retaining coverage data elsewhere.
    See PR #​3349 for details.
  • Fix CodeQL alerts
    Addressed CodeQL-reported issues to improve security posture and static analysis cleanliness.
    See PR #​3364 for details.

.NET 10 / SDK and tooling updates

  • Building with .NET 10 preview / RC 1
    Updated the repository to build and test against .NET 10.0 preview/RC1, ensuring early compatibility with the upcoming runtime.
    See PRs #​3287, #​3357, and #​3358 for details.
  • Fix .NET 10 test execution consistency
    Ensured consistent use of the TargetNetNext parameter across build, test, and pack phases so .NET 10.0 tests execute reliably.
    See PR #​3337 for details.
  • Update project files and workflows for .NET 10.0 compatibility
    Adjusted project files and CI workflows to correctly target and run on .NET 10.0, including test and pack scenarios.
    See PR #​3363 for details.
  • Update .NET version to meet CG compliance
    Updated the .NET version references to be compliant with corporate governance (CG) requirements.
    See PR #​3353 for details.
  • Update Coverlet collector and test SDK
    • Bumped CoverletCollectorVersion to 6.0.4.
      See PR #​3333 for details.
    • Upgraded Microsoft.NET.Test.Sdk to a newer version for improved test reliability and tooling support.
      ... (truncated)

8.14.0

8.14.0

Bug Fixes

  • Switch back to use ValidationResult instead of OperationResult when validating a token in a new experimental validation flow. Additionally removed the dependency on Microsoft.IdentityModel.Abstractions. See #​3299 for details.

8.13.1

8.13.1

Dependencies

Microsoft.IdentityModel now depends on Microsoft.Identity.Abstractions 9.3.0

Bug Fixes

  • Fixed a decompression failure happening for large JWE payloads. See #​3286 for details.

Work related to redesign of IdentityModel's token validation logic #​2711

  • Update the validation methods to return Microsoft.Identity.Abstractions.OperationResult. See #​3284 for details.

8.13.0

8.13.0

8.13.0

Fundamentals

  • CaseSensitiveClaimsIdentity.SecurityToken setter is now protected internal (was internal). See PR #​3278 for details.
  • Update .NET SDK version to 9.0.108 used when building or running the code. See PR #​3274 for details.
  • Update RsaSecurityKey.cs to replace the Pkcs1 padding by Pss from HasPrivateKey check. See #​3280 for details.

What's Changed

New Contributors

Full Changelog: AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet@8.12.1...8.13.0

8.12.1

8.12.1

Fundamentals

  • Update .NET SDK version to 9.0.107 used when building or running the code. See #​3263 for details.
  • To keep our experimental code separate from production code, all files associated with experimental features have been moved to the Experimental folders. See PR #​3261 for details.
  • Experimental code leaked into TokenValidationResult from early prototypes. See PR #​3259 for details.

What's Changed

Full Changelog: AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet@8.12.0...8.12.1

8.12.0

8.12.0

New Features

  • Enhance ConfigurationManager with event handling
    Added event handling capabilities to the ConfigurationManager, enabling consumers to subscribe to configuration change events. This enhancement improves extensibility and allows more responsive applications. For details see #​3253

Bug Fixes

  • Add expected Base64UrlEncoder.Decode overload for NET6 and 8
    Introduced the expected overload of Base64UrlEncoder.Decode for .NET 6 and 8, ensuring compatibility and preventing missing method issues on these frameworks.
    For details see #​3249

Fundamentals

  • Add AI assist rules
    Incorporated AI assist rules to enhance AI agents effectiveness.
    For details see #​3255
  • Update PublicApiAnalyzers and BannedApiAnalyzers to 4.14.0
    Upgraded analyzer packages for improved diagnostics and code consistency (in particular delegates are added).
    For details see #​3256
  • Move suppression of RS006 to csproj
    Centralized suppression of RS006 warnings in project files for easier management.
    For details see #​3230

What's Changed

Full Changelog: AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet@8.11.0...8.12.0

8.11.0

8.11.0

New Features:

  • Microsoft.IdentityModel now exposes the AadIssuerValidator factory method publicly to enable caching functionality for AadIssuerValidator instances. See issue #​3245 for details.
  • Added a new public async API: JsonWebTokenHandler.DecryptTokenWithConfigurationAsync, which decrypts a JWE token using keys from either TokenValidationParameters or, if not present, from configuration (such as via a ConfigurationManager). This enhancement improves developer experience by enabling asynchronous, cancellation-aware JWE decryption scenarios, aligning with modern .NET async patterns and making integration with external key/configuration sources more robust and observable. See PR #​3243 for details.

What's Changed

Full Changelog: AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet@8.10.0...8.11.0

8.10.0

8.10.0

Bug Fixes

  • Corrected casing of the Type attribute in SubjectConfirmationData. See #​3206.
  • Removed Microsoft.Bcl.Memory dependency for pre-.NET 9.0 targets. See #​3220.
  • Aligned Microsoft.Extensions.Logging.Abstractions version to 8.0.0 for .NET 9 to match other targets. See #​3226.

Fundamentals

8.9.0

8.9.0

Bug Fixes

New Features

Fundamentals

8.8.0

8.8.0

New Features

  • Adds the ability for the metadata refresh to be done as a blocking call, as per 8.0.1 behavior. This is done through the Switch.Microsoft.IdentityModel.UpdateConfigAsBlocking switch. If set, configuration calls will be blocking when metadata is updated, otherwise, if token arrive with a new signing keys, validation errors will be returned to the caller. See PR #​3193 for details.
  • Identity.Model updates some log and error messages (IDX10214, IDX10215). If the information is needed for debugging purposes, it can be reverted via the Switch.Microsoft.IdentityModel.DoNotScrubExceptions AppContextSwitch. See PR #​3195 and https://aka.ms/identitymodel/app-context-switches for details.
  • Change all plain object locks to System.Thread.Lock objects for .NET 9 or greater. See PRs #​3185 and #​3189 for details.

8.7.0

Bug Fixes

  • Add back internal methods IsRecoverableException and IsRecoverableExceptionType whose signatures were changed in the previous version. See #​3181.

New Features

  • Make Cnf class public and move it to Microsoft.IdentityModel.Tokens package. See #​3165.

What's Changed

New Contributors

Full Changelog: AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet@8.6.1...8.7.0

Commits viewable in compare view.

Updated Microsoft.NET.Test.Sdk from 18.0.1 to 18.3.0.

Release notes

Sourced from Microsoft.NET.Test.Sdk's releases.

18.3.0

What's Changed

Internal fixes and updates

New Contributors

Commits viewable in compare view.

Updated NUnit from 4.1.0 to 4.5.0.

Release notes

Sourced from NUnit's releases.

4.5.0

See release notes for details.

4.4.0

See [release notes](https://docs.nunit.org/articles/nunit/release-notes/framework.html#nunit...

Description has been truncated

Bumps diskann-garnet from 1.0.23 to 1.0.25
Bumps Microsoft.Extensions.Configuration.Binder from 10.0.2 to 10.0.3
Bumps Microsoft.Extensions.Configuration.Json from 10.0.2 to 10.0.3
Bumps Microsoft.Extensions.Logging from 10.0.2 to 10.0.3
Bumps Microsoft.Extensions.Logging.Configuration from 9.0.8 to 10.0.3
Bumps Microsoft.Extensions.Logging.Console from 9.0.8 to 10.0.3
Bumps Microsoft.IdentityModel.Protocols.OpenIdConnect from 8.6.1 to 8.16.0
Bumps Microsoft.IdentityModel.Validators from 8.6.1 to 8.16.0
Bumps Microsoft.NET.Test.Sdk from 18.0.1 to 18.3.0
Bumps NUnit from 4.1.0 to 4.5.0
Bumps NUnit3TestAdapter from 4.6.0 to 6.1.0
Bumps StackExchange.Redis from 2.9.25 to 2.11.8
Bumps System.IdentityModel.Tokens.Jwt from 8.6.1 to 8.16.0
Bumps System.Numerics.Tensors from 9.0.9 to 10.0.3

---
updated-dependencies:
- dependency-name: diskann-garnet
  dependency-version: 1.0.25
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-deps
- dependency-name: Microsoft.Extensions.Configuration.Binder
  dependency-version: 10.0.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-deps
- dependency-name: Microsoft.Extensions.Configuration.Json
  dependency-version: 10.0.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-deps
- dependency-name: Microsoft.Extensions.Logging
  dependency-version: 10.0.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-deps
- dependency-name: Microsoft.Extensions.Logging.Configuration
  dependency-version: 10.0.3
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: nuget-deps
- dependency-name: Microsoft.Extensions.Logging.Console
  dependency-version: 10.0.3
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: nuget-deps
- dependency-name: Microsoft.IdentityModel.Protocols.OpenIdConnect
  dependency-version: 8.16.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-deps
- dependency-name: System.IdentityModel.Tokens.Jwt
  dependency-version: 8.16.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-deps
- dependency-name: Microsoft.IdentityModel.Validators
  dependency-version: 8.16.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-deps
- dependency-name: Microsoft.NET.Test.Sdk
  dependency-version: 18.3.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-deps
- dependency-name: NUnit
  dependency-version: 4.5.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-deps
- dependency-name: NUnit3TestAdapter
  dependency-version: 6.1.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: nuget-deps
- dependency-name: StackExchange.Redis
  dependency-version: 2.11.8
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-deps
- dependency-name: System.Numerics.Tensors
  dependency-version: 10.0.3
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: nuget-deps
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot Bot added .NET Pull requests that update .net code dependencies Pull requests that update a dependency file labels Mar 2, 2026
@vazois vazois requested a review from Copilot March 2, 2026 20:09

Copilot AI left a comment

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Updates centrally-managed NuGet package versions (via Directory.Packages.props) to newer releases, including diskann integration and several .NET/identity/testing dependencies.

Changes:

  • Bump diskann-garnet from 1.0.23 to 1.0.25.
  • Update .NET/identity packages (e.g., Microsoft.Extensions.*, Microsoft.IdentityModel.*, System.IdentityModel.Tokens.Jwt) and StackExchange.Redis.
  • Update test dependencies (NUnit, NUnit3TestAdapter, Microsoft.NET.Test.Sdk).

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

Comment thread Directory.Packages.props Outdated
Comment thread Directory.Packages.props Outdated
@vazois

vazois commented Mar 2, 2026

Copy link
Copy Markdown
Contributor

@copilot seems like Garnet.test.GarnetClientTests.cs:SimpleStringArrayTest hangs. The cause seems to be upgrading the NUnit version. Investigate what is the actual issue given the provided information?

Copilot AI commented Mar 2, 2026

Copy link
Copy Markdown
Contributor

@vazois I've opened a new pull request, #1593, to work on those changes. Once the pull request is ready, I'll request review from you.

vazois and others added 4 commits March 2, 2026 13:55
…4.5 deadlock (#1593)

* Initial plan

* Add .ConfigureAwait(false) to all await expressions in test files

Add .ConfigureAwait(false) to every await expression across 38 test
files under test/ to follow best practices for library/test code and
avoid potential deadlocks in synchronization contexts.

- Handles single-line and multi-line await expressions
- Handles ternary await expressions (both branches)
- Skips await foreach and await using (already correct)
- Excludes Task.Yield() which returns YieldAwaitable (no ConfigureAwait support)
- No changes outside test/ directory

Co-authored-by: Copilot <[email protected]>

---------

Co-authored-by: copilot-swe-agent[bot] <[email protected]>
Co-authored-by: Copilot <[email protected]>
Co-authored-by: Vasileios Zois <[email protected]>
@vazois

vazois commented Mar 3, 2026

Copy link
Copy Markdown
Contributor

@copilot, Investigate why upgrading StackExcahnge.Redis from 2.9.25 to 2.11.8 caused ClusterVectorSetTests.MigrateVectorStressAsync and ClusterVectorSetTests.MigrateVectorSetWhileModifyingAsync to fail and provide a recommendation for fixing this issue.

Copilot AI commented Mar 3, 2026

Copy link
Copy Markdown
Contributor

@vazois I've opened a new pull request, #1595, to work on those changes. Once the pull request is ready, I'll request review from you.

Copilot AI and others added 5 commits March 3, 2026 10:53
* Initial plan

* Fix MigrateVector tests to handle transient errors from StackExchange.Redis 2.11.8

Co-authored-by: vazois <[email protected]>

* Fix MigrateVector tests: use Exception catch + specific MOVED message patterns for SE.Redis 2.11.8

Co-authored-by: vazois <[email protected]>

---------

Co-authored-by: copilot-swe-agent[bot] <[email protected]>
Co-authored-by: vazois <[email protected]>
@vazois vazois merged commit b0cef0a into main Mar 4, 2026
27 checks passed
@vazois vazois deleted the dependabot/nuget/nuget-deps-4ed949ffaf branch March 4, 2026 05:58
vazois added a commit that referenced this pull request Mar 4, 2026
* Bump the nuget-deps group with 14 updates

Bumps diskann-garnet from 1.0.23 to 1.0.25
Bumps Microsoft.Extensions.Configuration.Binder from 10.0.2 to 10.0.3
Bumps Microsoft.Extensions.Configuration.Json from 10.0.2 to 10.0.3
Bumps Microsoft.Extensions.Logging from 10.0.2 to 10.0.3
Bumps Microsoft.Extensions.Logging.Configuration from 9.0.8 to 10.0.3
Bumps Microsoft.Extensions.Logging.Console from 9.0.8 to 10.0.3
Bumps Microsoft.IdentityModel.Protocols.OpenIdConnect from 8.6.1 to 8.16.0
Bumps Microsoft.IdentityModel.Validators from 8.6.1 to 8.16.0
Bumps Microsoft.NET.Test.Sdk from 18.0.1 to 18.3.0
Bumps NUnit from 4.1.0 to 4.5.0
Bumps NUnit3TestAdapter from 4.6.0 to 6.1.0
Bumps StackExchange.Redis from 2.9.25 to 2.11.8
Bumps System.IdentityModel.Tokens.Jwt from 8.6.1 to 8.16.0
Bumps System.Numerics.Tensors from 9.0.9 to 10.0.3

---
updated-dependencies:
- dependency-name: diskann-garnet
  dependency-version: 1.0.25
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-deps
- dependency-name: Microsoft.Extensions.Configuration.Binder
  dependency-version: 10.0.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-deps
- dependency-name: Microsoft.Extensions.Configuration.Json
  dependency-version: 10.0.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-deps
- dependency-name: Microsoft.Extensions.Logging
  dependency-version: 10.0.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-deps
- dependency-name: Microsoft.Extensions.Logging.Configuration
  dependency-version: 10.0.3
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: nuget-deps
- dependency-name: Microsoft.Extensions.Logging.Console
  dependency-version: 10.0.3
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: nuget-deps
- dependency-name: Microsoft.IdentityModel.Protocols.OpenIdConnect
  dependency-version: 8.16.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-deps
- dependency-name: System.IdentityModel.Tokens.Jwt
  dependency-version: 8.16.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-deps
- dependency-name: Microsoft.IdentityModel.Validators
  dependency-version: 8.16.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-deps
- dependency-name: Microsoft.NET.Test.Sdk
  dependency-version: 18.3.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-deps
- dependency-name: NUnit
  dependency-version: 4.5.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-deps
- dependency-name: NUnit3TestAdapter
  dependency-version: 6.1.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: nuget-deps
- dependency-name: StackExchange.Redis
  dependency-version: 2.11.8
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-deps
- dependency-name: System.Numerics.Tensors
  dependency-version: 10.0.3
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: nuget-deps
...

Signed-off-by: dependabot[bot] <[email protected]>

* fix changes in API

* revert unit test upgrade

* Add ConfigureAwait(false) to all test await expressions to fix NUnit 4.5 deadlock (#1593)

* Initial plan

* Add .ConfigureAwait(false) to all await expressions in test files

Add .ConfigureAwait(false) to every await expression across 38 test
files under test/ to follow best practices for library/test code and
avoid potential deadlocks in synchronization contexts.

- Handles single-line and multi-line await expressions
- Handles ternary await expressions (both branches)
- Skips await foreach and await using (already correct)
- Excludes Task.Yield() which returns YieldAwaitable (no ConfigureAwait support)
- No changes outside test/ directory

Co-authored-by: Copilot <[email protected]>

---------

Co-authored-by: copilot-swe-agent[bot] <[email protected]>
Co-authored-by: Copilot <[email protected]>
Co-authored-by: Vasileios Zois <[email protected]>

* upgrade nunit

* Fix MigrateVector cluster tests for StackExchange.Redis 2.11.8 (#1595)

* Initial plan

* Fix MigrateVector tests to handle transient errors from StackExchange.Redis 2.11.8

Co-authored-by: vazois <[email protected]>

* Fix MigrateVector tests: use Exception catch + specific MOVED message patterns for SE.Redis 2.11.8

Co-authored-by: vazois <[email protected]>

---------

Co-authored-by: copilot-swe-agent[bot] <[email protected]>
Co-authored-by: vazois <[email protected]>

* revert diskann version

---------

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Vasileios Zois <[email protected]>
Co-authored-by: Copilot <[email protected]>
Co-authored-by: Copilot <[email protected]>
Co-authored-by: Vasileios Zois <[email protected]>
Co-authored-by: Tal Zaccai <[email protected]>
vazois added a commit that referenced this pull request Mar 4, 2026
* Bump the nuget-deps group with 14 updates

Bumps diskann-garnet from 1.0.23 to 1.0.25
Bumps Microsoft.Extensions.Configuration.Binder from 10.0.2 to 10.0.3
Bumps Microsoft.Extensions.Configuration.Json from 10.0.2 to 10.0.3
Bumps Microsoft.Extensions.Logging from 10.0.2 to 10.0.3
Bumps Microsoft.Extensions.Logging.Configuration from 9.0.8 to 10.0.3
Bumps Microsoft.Extensions.Logging.Console from 9.0.8 to 10.0.3
Bumps Microsoft.IdentityModel.Protocols.OpenIdConnect from 8.6.1 to 8.16.0
Bumps Microsoft.IdentityModel.Validators from 8.6.1 to 8.16.0
Bumps Microsoft.NET.Test.Sdk from 18.0.1 to 18.3.0
Bumps NUnit from 4.1.0 to 4.5.0
Bumps NUnit3TestAdapter from 4.6.0 to 6.1.0
Bumps StackExchange.Redis from 2.9.25 to 2.11.8
Bumps System.IdentityModel.Tokens.Jwt from 8.6.1 to 8.16.0
Bumps System.Numerics.Tensors from 9.0.9 to 10.0.3

---
updated-dependencies:
- dependency-name: diskann-garnet
  dependency-version: 1.0.25
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-deps
- dependency-name: Microsoft.Extensions.Configuration.Binder
  dependency-version: 10.0.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-deps
- dependency-name: Microsoft.Extensions.Configuration.Json
  dependency-version: 10.0.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-deps
- dependency-name: Microsoft.Extensions.Logging
  dependency-version: 10.0.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-deps
- dependency-name: Microsoft.Extensions.Logging.Configuration
  dependency-version: 10.0.3
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: nuget-deps
- dependency-name: Microsoft.Extensions.Logging.Console
  dependency-version: 10.0.3
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: nuget-deps
- dependency-name: Microsoft.IdentityModel.Protocols.OpenIdConnect
  dependency-version: 8.16.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-deps
- dependency-name: System.IdentityModel.Tokens.Jwt
  dependency-version: 8.16.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-deps
- dependency-name: Microsoft.IdentityModel.Validators
  dependency-version: 8.16.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-deps
- dependency-name: Microsoft.NET.Test.Sdk
  dependency-version: 18.3.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-deps
- dependency-name: NUnit
  dependency-version: 4.5.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-deps
- dependency-name: NUnit3TestAdapter
  dependency-version: 6.1.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: nuget-deps
- dependency-name: StackExchange.Redis
  dependency-version: 2.11.8
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-deps
- dependency-name: System.Numerics.Tensors
  dependency-version: 10.0.3
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: nuget-deps
...

Signed-off-by: dependabot[bot] <[email protected]>

* fix changes in API

* revert unit test upgrade

* Add ConfigureAwait(false) to all test await expressions to fix NUnit 4.5 deadlock (#1593)

* Initial plan

* Add .ConfigureAwait(false) to all await expressions in test files

Add .ConfigureAwait(false) to every await expression across 38 test
files under test/ to follow best practices for library/test code and
avoid potential deadlocks in synchronization contexts.

- Handles single-line and multi-line await expressions
- Handles ternary await expressions (both branches)
- Skips await foreach and await using (already correct)
- Excludes Task.Yield() which returns YieldAwaitable (no ConfigureAwait support)
- No changes outside test/ directory

Co-authored-by: Copilot <[email protected]>

---------

Co-authored-by: copilot-swe-agent[bot] <[email protected]>
Co-authored-by: Copilot <[email protected]>
Co-authored-by: Vasileios Zois <[email protected]>

* upgrade nunit

* Fix MigrateVector cluster tests for StackExchange.Redis 2.11.8 (#1595)

* Initial plan

* Fix MigrateVector tests to handle transient errors from StackExchange.Redis 2.11.8

Co-authored-by: vazois <[email protected]>

* Fix MigrateVector tests: use Exception catch + specific MOVED message patterns for SE.Redis 2.11.8

Co-authored-by: vazois <[email protected]>

---------

Co-authored-by: copilot-swe-agent[bot] <[email protected]>
Co-authored-by: vazois <[email protected]>

* revert diskann version

---------

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Vasileios Zois <[email protected]>
Co-authored-by: Copilot <[email protected]>
Co-authored-by: Copilot <[email protected]>
Co-authored-by: Vasileios Zois <[email protected]>
Co-authored-by: Tal Zaccai <[email protected]>
vazois added a commit that referenced this pull request Mar 4, 2026
…F operations (#1599)

* SkipChecksum validation testing and fix

* validate HLL format with skipRDBRestoreChecksumValidation

* add tests that cover different length encoding

* add full sparse stream validation

* skipRDBRestoreChecksumValidation for slot validation tests

* remove double validation and fix buffer swap

* reduce test overhead

* fix redirection tests for RESTORE

* eliminate SkipRDBRestoreChecksumValidation option

* Bump the nuget-deps group with 14 updates (#1592)

* Bump the nuget-deps group with 14 updates

Bumps diskann-garnet from 1.0.23 to 1.0.25
Bumps Microsoft.Extensions.Configuration.Binder from 10.0.2 to 10.0.3
Bumps Microsoft.Extensions.Configuration.Json from 10.0.2 to 10.0.3
Bumps Microsoft.Extensions.Logging from 10.0.2 to 10.0.3
Bumps Microsoft.Extensions.Logging.Configuration from 9.0.8 to 10.0.3
Bumps Microsoft.Extensions.Logging.Console from 9.0.8 to 10.0.3
Bumps Microsoft.IdentityModel.Protocols.OpenIdConnect from 8.6.1 to 8.16.0
Bumps Microsoft.IdentityModel.Validators from 8.6.1 to 8.16.0
Bumps Microsoft.NET.Test.Sdk from 18.0.1 to 18.3.0
Bumps NUnit from 4.1.0 to 4.5.0
Bumps NUnit3TestAdapter from 4.6.0 to 6.1.0
Bumps StackExchange.Redis from 2.9.25 to 2.11.8
Bumps System.IdentityModel.Tokens.Jwt from 8.6.1 to 8.16.0
Bumps System.Numerics.Tensors from 9.0.9 to 10.0.3

---
updated-dependencies:
- dependency-name: diskann-garnet
  dependency-version: 1.0.25
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-deps
- dependency-name: Microsoft.Extensions.Configuration.Binder
  dependency-version: 10.0.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-deps
- dependency-name: Microsoft.Extensions.Configuration.Json
  dependency-version: 10.0.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-deps
- dependency-name: Microsoft.Extensions.Logging
  dependency-version: 10.0.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-deps
- dependency-name: Microsoft.Extensions.Logging.Configuration
  dependency-version: 10.0.3
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: nuget-deps
- dependency-name: Microsoft.Extensions.Logging.Console
  dependency-version: 10.0.3
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: nuget-deps
- dependency-name: Microsoft.IdentityModel.Protocols.OpenIdConnect
  dependency-version: 8.16.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-deps
- dependency-name: System.IdentityModel.Tokens.Jwt
  dependency-version: 8.16.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-deps
- dependency-name: Microsoft.IdentityModel.Validators
  dependency-version: 8.16.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-deps
- dependency-name: Microsoft.NET.Test.Sdk
  dependency-version: 18.3.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-deps
- dependency-name: NUnit
  dependency-version: 4.5.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-deps
- dependency-name: NUnit3TestAdapter
  dependency-version: 6.1.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: nuget-deps
- dependency-name: StackExchange.Redis
  dependency-version: 2.11.8
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-deps
- dependency-name: System.Numerics.Tensors
  dependency-version: 10.0.3
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: nuget-deps
...

Signed-off-by: dependabot[bot] <[email protected]>

* fix changes in API

* revert unit test upgrade

* Add ConfigureAwait(false) to all test await expressions to fix NUnit 4.5 deadlock (#1593)

* Initial plan

* Add .ConfigureAwait(false) to all await expressions in test files

Add .ConfigureAwait(false) to every await expression across 38 test
files under test/ to follow best practices for library/test code and
avoid potential deadlocks in synchronization contexts.

- Handles single-line and multi-line await expressions
- Handles ternary await expressions (both branches)
- Skips await foreach and await using (already correct)
- Excludes Task.Yield() which returns YieldAwaitable (no ConfigureAwait support)
- No changes outside test/ directory

Co-authored-by: Copilot <[email protected]>

---------

Co-authored-by: copilot-swe-agent[bot] <[email protected]>
Co-authored-by: Copilot <[email protected]>
Co-authored-by: Vasileios Zois <[email protected]>

* upgrade nunit

* Fix MigrateVector cluster tests for StackExchange.Redis 2.11.8 (#1595)

* Initial plan

* Fix MigrateVector tests to handle transient errors from StackExchange.Redis 2.11.8

Co-authored-by: vazois <[email protected]>

* Fix MigrateVector tests: use Exception catch + specific MOVED message patterns for SE.Redis 2.11.8

Co-authored-by: vazois <[email protected]>

---------

Co-authored-by: copilot-swe-agent[bot] <[email protected]>
Co-authored-by: vazois <[email protected]>

* revert diskann version

---------

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Vasileios Zois <[email protected]>
Co-authored-by: Copilot <[email protected]>
Co-authored-by: Copilot <[email protected]>
Co-authored-by: Vasileios Zois <[email protected]>
Co-authored-by: Tal Zaccai <[email protected]>

* cleanup unused properties

* add more comments at HLL validation

* add test that bypasses crc check by faking it while corrupting the HLL payload

---------

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Copilot <[email protected]>
Co-authored-by: Copilot <[email protected]>
Co-authored-by: Tal Zaccai <[email protected]>
TalZaccai added a commit that referenced this pull request Mar 12, 2026
* Bump the nuget-deps group with 14 updates

Bumps diskann-garnet from 1.0.23 to 1.0.25
Bumps Microsoft.Extensions.Configuration.Binder from 10.0.2 to 10.0.3
Bumps Microsoft.Extensions.Configuration.Json from 10.0.2 to 10.0.3
Bumps Microsoft.Extensions.Logging from 10.0.2 to 10.0.3
Bumps Microsoft.Extensions.Logging.Configuration from 9.0.8 to 10.0.3
Bumps Microsoft.Extensions.Logging.Console from 9.0.8 to 10.0.3
Bumps Microsoft.IdentityModel.Protocols.OpenIdConnect from 8.6.1 to 8.16.0
Bumps Microsoft.IdentityModel.Validators from 8.6.1 to 8.16.0
Bumps Microsoft.NET.Test.Sdk from 18.0.1 to 18.3.0
Bumps NUnit from 4.1.0 to 4.5.0
Bumps NUnit3TestAdapter from 4.6.0 to 6.1.0
Bumps StackExchange.Redis from 2.9.25 to 2.11.8
Bumps System.IdentityModel.Tokens.Jwt from 8.6.1 to 8.16.0
Bumps System.Numerics.Tensors from 9.0.9 to 10.0.3

---
updated-dependencies:
- dependency-name: diskann-garnet
  dependency-version: 1.0.25
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-deps
- dependency-name: Microsoft.Extensions.Configuration.Binder
  dependency-version: 10.0.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-deps
- dependency-name: Microsoft.Extensions.Configuration.Json
  dependency-version: 10.0.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-deps
- dependency-name: Microsoft.Extensions.Logging
  dependency-version: 10.0.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-deps
- dependency-name: Microsoft.Extensions.Logging.Configuration
  dependency-version: 10.0.3
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: nuget-deps
- dependency-name: Microsoft.Extensions.Logging.Console
  dependency-version: 10.0.3
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: nuget-deps
- dependency-name: Microsoft.IdentityModel.Protocols.OpenIdConnect
  dependency-version: 8.16.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-deps
- dependency-name: System.IdentityModel.Tokens.Jwt
  dependency-version: 8.16.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-deps
- dependency-name: Microsoft.IdentityModel.Validators
  dependency-version: 8.16.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-deps
- dependency-name: Microsoft.NET.Test.Sdk
  dependency-version: 18.3.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-deps
- dependency-name: NUnit
  dependency-version: 4.5.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-deps
- dependency-name: NUnit3TestAdapter
  dependency-version: 6.1.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: nuget-deps
- dependency-name: StackExchange.Redis
  dependency-version: 2.11.8
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-deps
- dependency-name: System.Numerics.Tensors
  dependency-version: 10.0.3
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: nuget-deps
...

Signed-off-by: dependabot[bot] <[email protected]>

* fix changes in API

* revert unit test upgrade

* Add ConfigureAwait(false) to all test await expressions to fix NUnit 4.5 deadlock (#1593)

* Initial plan

* Add .ConfigureAwait(false) to all await expressions in test files

Add .ConfigureAwait(false) to every await expression across 38 test
files under test/ to follow best practices for library/test code and
avoid potential deadlocks in synchronization contexts.

- Handles single-line and multi-line await expressions
- Handles ternary await expressions (both branches)
- Skips await foreach and await using (already correct)
- Excludes Task.Yield() which returns YieldAwaitable (no ConfigureAwait support)
- No changes outside test/ directory

Co-authored-by: Copilot <[email protected]>

---------

Co-authored-by: copilot-swe-agent[bot] <[email protected]>
Co-authored-by: Copilot <[email protected]>
Co-authored-by: Vasileios Zois <[email protected]>

* upgrade nunit

* Fix MigrateVector cluster tests for StackExchange.Redis 2.11.8 (#1595)

* Initial plan

* Fix MigrateVector tests to handle transient errors from StackExchange.Redis 2.11.8

Co-authored-by: vazois <[email protected]>

* Fix MigrateVector tests: use Exception catch + specific MOVED message patterns for SE.Redis 2.11.8

Co-authored-by: vazois <[email protected]>

---------

Co-authored-by: copilot-swe-agent[bot] <[email protected]>
Co-authored-by: vazois <[email protected]>

* revert diskann version

---------

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Vasileios Zois <[email protected]>
Co-authored-by: Copilot <[email protected]>
Co-authored-by: Copilot <[email protected]>
Co-authored-by: Vasileios Zois <[email protected]>
Co-authored-by: Tal Zaccai <[email protected]>
TalZaccai added a commit that referenced this pull request Mar 12, 2026
…F operations (#1599)

* SkipChecksum validation testing and fix

* validate HLL format with skipRDBRestoreChecksumValidation

* add tests that cover different length encoding

* add full sparse stream validation

* skipRDBRestoreChecksumValidation for slot validation tests

* remove double validation and fix buffer swap

* reduce test overhead

* fix redirection tests for RESTORE

* eliminate SkipRDBRestoreChecksumValidation option

* Bump the nuget-deps group with 14 updates (#1592)

* Bump the nuget-deps group with 14 updates

Bumps diskann-garnet from 1.0.23 to 1.0.25
Bumps Microsoft.Extensions.Configuration.Binder from 10.0.2 to 10.0.3
Bumps Microsoft.Extensions.Configuration.Json from 10.0.2 to 10.0.3
Bumps Microsoft.Extensions.Logging from 10.0.2 to 10.0.3
Bumps Microsoft.Extensions.Logging.Configuration from 9.0.8 to 10.0.3
Bumps Microsoft.Extensions.Logging.Console from 9.0.8 to 10.0.3
Bumps Microsoft.IdentityModel.Protocols.OpenIdConnect from 8.6.1 to 8.16.0
Bumps Microsoft.IdentityModel.Validators from 8.6.1 to 8.16.0
Bumps Microsoft.NET.Test.Sdk from 18.0.1 to 18.3.0
Bumps NUnit from 4.1.0 to 4.5.0
Bumps NUnit3TestAdapter from 4.6.0 to 6.1.0
Bumps StackExchange.Redis from 2.9.25 to 2.11.8
Bumps System.IdentityModel.Tokens.Jwt from 8.6.1 to 8.16.0
Bumps System.Numerics.Tensors from 9.0.9 to 10.0.3

---
updated-dependencies:
- dependency-name: diskann-garnet
  dependency-version: 1.0.25
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-deps
- dependency-name: Microsoft.Extensions.Configuration.Binder
  dependency-version: 10.0.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-deps
- dependency-name: Microsoft.Extensions.Configuration.Json
  dependency-version: 10.0.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-deps
- dependency-name: Microsoft.Extensions.Logging
  dependency-version: 10.0.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-deps
- dependency-name: Microsoft.Extensions.Logging.Configuration
  dependency-version: 10.0.3
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: nuget-deps
- dependency-name: Microsoft.Extensions.Logging.Console
  dependency-version: 10.0.3
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: nuget-deps
- dependency-name: Microsoft.IdentityModel.Protocols.OpenIdConnect
  dependency-version: 8.16.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-deps
- dependency-name: System.IdentityModel.Tokens.Jwt
  dependency-version: 8.16.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-deps
- dependency-name: Microsoft.IdentityModel.Validators
  dependency-version: 8.16.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-deps
- dependency-name: Microsoft.NET.Test.Sdk
  dependency-version: 18.3.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-deps
- dependency-name: NUnit
  dependency-version: 4.5.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-deps
- dependency-name: NUnit3TestAdapter
  dependency-version: 6.1.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: nuget-deps
- dependency-name: StackExchange.Redis
  dependency-version: 2.11.8
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-deps
- dependency-name: System.Numerics.Tensors
  dependency-version: 10.0.3
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: nuget-deps
...

Signed-off-by: dependabot[bot] <[email protected]>

* fix changes in API

* revert unit test upgrade

* Add ConfigureAwait(false) to all test await expressions to fix NUnit 4.5 deadlock (#1593)

* Initial plan

* Add .ConfigureAwait(false) to all await expressions in test files

Add .ConfigureAwait(false) to every await expression across 38 test
files under test/ to follow best practices for library/test code and
avoid potential deadlocks in synchronization contexts.

- Handles single-line and multi-line await expressions
- Handles ternary await expressions (both branches)
- Skips await foreach and await using (already correct)
- Excludes Task.Yield() which returns YieldAwaitable (no ConfigureAwait support)
- No changes outside test/ directory

Co-authored-by: Copilot <[email protected]>

---------

Co-authored-by: copilot-swe-agent[bot] <[email protected]>
Co-authored-by: Copilot <[email protected]>
Co-authored-by: Vasileios Zois <[email protected]>

* upgrade nunit

* Fix MigrateVector cluster tests for StackExchange.Redis 2.11.8 (#1595)

* Initial plan

* Fix MigrateVector tests to handle transient errors from StackExchange.Redis 2.11.8

Co-authored-by: vazois <[email protected]>

* Fix MigrateVector tests: use Exception catch + specific MOVED message patterns for SE.Redis 2.11.8

Co-authored-by: vazois <[email protected]>

---------

Co-authored-by: copilot-swe-agent[bot] <[email protected]>
Co-authored-by: vazois <[email protected]>

* revert diskann version

---------

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Vasileios Zois <[email protected]>
Co-authored-by: Copilot <[email protected]>
Co-authored-by: Copilot <[email protected]>
Co-authored-by: Vasileios Zois <[email protected]>
Co-authored-by: Tal Zaccai <[email protected]>

* cleanup unused properties

* add more comments at HLL validation

* add test that bypasses crc check by faking it while corrupting the HLL payload

---------

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Copilot <[email protected]>
Co-authored-by: Copilot <[email protected]>
Co-authored-by: Tal Zaccai <[email protected]>
TalZaccai added a commit that referenced this pull request Mar 13, 2026
* Bump @easyops-cn/docusaurus-search-local in /website (#1584)

Bumps [@easyops-cn/docusaurus-search-local](https://github.com/easyops-cn/docusaurus-search-local/tree/HEAD/packages/docusaurus-search-local) from 0.52.3 to 0.55.1.
- [Release notes](https://github.com/easyops-cn/docusaurus-search-local/releases)
- [Commits](https://github.com/easyops-cn/docusaurus-search-local/commits/v0.55.1/packages/docusaurus-search-local)

---
updated-dependencies:
- dependency-name: "@easyops-cn/docusaurus-search-local"
  dependency-version: 0.55.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* add grouping wildcard (#1591)

* Bump dotnet-sdk from 10.0.101 to 10.0.103 (#1585)

Bumps [dotnet-sdk](https://github.com/dotnet/sdk) from 10.0.101 to 10.0.103.
- [Release notes](https://github.com/dotnet/sdk/releases)
- [Commits](dotnet/sdk@v10.0.101...v10.0.103)

---
updated-dependencies:
- dependency-name: dotnet-sdk
  dependency-version: 10.0.103
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Vasileios Zois <[email protected]>

* Fix Stored Proc Replay (#1583)

* fix failing ClusterReplicationStoredProc

* revert logging

* Update docker files to latest (#1600)

* update dockerfiles

* Fix Docker build issues: libaio path, tdnf, and workflow image names

- Dockerfile: Add libaio.so.1t64 -> libaio.so.1 symlink for Ubuntu 24.04 t64 compat
- Dockerfile.ubuntu: Copy libaio.so.1t64 and create libaio.so.1 symlink
  (consistent with CI workaround and Dockerfile)
- Dockerfile.cbl-mariner: Revert dnf back to tdnf (Azure Linux 3.0 uses tdnf)
- docker-linux.yml: Update GHCR image names to match new base OS
  (jammy -> noble, cbl-mariner2.0 -> azurelinux3.0)

Co-authored-by: Copilot <[email protected]>

* Fix Alpine Lua SIGSEGV: remove glibc-compiled KeraLua liblua54.so

The KeraLua NuGet package bundles a glibc-compiled liblua54.so that gets
published to /app/liblua54.so. On Alpine (musl libc), .NET loads this
glibc binary first (app dir takes priority), causing SIGSEGV on any Lua
EVAL command. Remove it in the build stage so .NET falls through to the
musl-compiled system Lua library via the runtime symlink.

Co-authored-by: Copilot <[email protected]>

* Add libaio to chiseled image for native device support

The chiseled (distroless) image was missing libaio.so.1, causing
--device-type Native to fail with 'libaio.so.1: cannot open shared
object file'. Add libaio1t64 to the libs-builder stage and copy both
the library and compat symlink into the final chiseled image.

Co-authored-by: Copilot <[email protected]>

* Fix Dockerfile.ubuntu libaio arm64 arch mismatch

Remove the hardcoded --platform=linux/amd64 builder stage that always
copied x86_64 libaio into the runtime image regardless of target arch.
Install libaio1t64 directly in the runtime stage via apt-get (alongside
liblua5.4-0) so the correct architecture library is installed, matching
the approach used in the default Dockerfile.

Co-authored-by: Copilot <[email protected]>

* Add Docker image validation test script

Comprehensive Python script that verifies all 5 Linux Docker images:
- Build all Dockerfiles
- Basic server tests (PING, SET, GET)
- Lua EVAL scripting
- Default device persistence (all platforms incl. Alpine)
- Native device persistence (glibc platforms)
- Library resolution checks (libaio, liblua54, libnative_device)
- Optional multi-platform buildx (amd64+arm64)

Usage: python3 test/docker-tests/validate_docker_images.py [--skip-build] [--multiplatform] [--images ...]

Co-authored-by: Copilot <[email protected]>

* Remove dead libaio copy in chiseled prep-runtime stage

The libaio files copied into prep-runtime's /usr/lib were never
transferred to the final chiseled image (only /usr/share/dotnet/shared
is copied from prep-runtime). The final image already gets libaio
directly from libs-builder. Remove the unused copy/symlink steps.

Co-authored-by: Copilot <[email protected]>

* Rename Dockerfile.cbl-mariner to Dockerfile.azurelinux

The runtime base image is now azurelinux3.0 and the CI publishes as
-azurelinux3.0. Rename the Dockerfile to match and update the workflow
matrix and test script references.

Co-authored-by: Copilot <[email protected]>

* Use native lua-libs package on Azure Linux instead of Ubuntu copy

Azure Linux 3.0 ships lua-libs (providing /usr/lib/liblua-5.4.so) in
the base runtime image. Use a symlink to this native library instead of
copying a cross-distro binary from an Ubuntu builder stage. This avoids
potential glibc ABI compatibility issues and removes an unnecessary
build stage.

Co-authored-by: Copilot <[email protected]>

* Use synchronous SAVE instead of BGSAVE+sleep in Docker tests

SAVE blocks until the checkpoint completes and returns, eliminating the
race condition from the sleep-based BGSAVE approach.

Co-authored-by: Copilot <[email protected]>

---------

Co-authored-by: Copilot <[email protected]>

* Fix 7 Dependabot security vulnerabilities in website npm dependencies (#1601)

* Initial plan

* initial plan

Co-authored-by: TalZaccai <[email protected]>

* Fix 7 Dependabot security vulnerabilities in website npm dependencies

- Add yarn resolutions for minimatch (3.1.5) and serialize-javascript (7.0.4)
- Add npm overrides for minimatch (3.1.5) and serialize-javascript (7.0.4)
- ajv updated to 6.14.0 (^6.x) and 8.18.0 (^8.x) via yarn re-resolution
- Fixes: GHSA-2g4f-4pwh-qvx6 (ajv ReDoS), GHSA-3ppc-4f35-3m26,
  GHSA-7r86-cg39-jmmj, GHSA-23c5-xmqv-rm74 (minimatch ReDoS),
  GHSA-5c6j-r48x-rmvq (serialize-javascript RCE)

Co-authored-by: TalZaccai <[email protected]>

* Remove yarn v1 resolutions from website/package.json

Per review feedback, the resolutions field is unnecessary since yarn v1
is not used. The npm overrides field handles dependency pinning.

Co-authored-by: TalZaccai <[email protected]>

---------

Co-authored-by: copilot-swe-agent[bot] <[email protected]>
Co-authored-by: TalZaccai <[email protected]>
Co-authored-by: Tal Zaccai <[email protected]>

* Bump the nuget-deps group with 14 updates (#1592)

* Bump the nuget-deps group with 14 updates

Bumps diskann-garnet from 1.0.23 to 1.0.25
Bumps Microsoft.Extensions.Configuration.Binder from 10.0.2 to 10.0.3
Bumps Microsoft.Extensions.Configuration.Json from 10.0.2 to 10.0.3
Bumps Microsoft.Extensions.Logging from 10.0.2 to 10.0.3
Bumps Microsoft.Extensions.Logging.Configuration from 9.0.8 to 10.0.3
Bumps Microsoft.Extensions.Logging.Console from 9.0.8 to 10.0.3
Bumps Microsoft.IdentityModel.Protocols.OpenIdConnect from 8.6.1 to 8.16.0
Bumps Microsoft.IdentityModel.Validators from 8.6.1 to 8.16.0
Bumps Microsoft.NET.Test.Sdk from 18.0.1 to 18.3.0
Bumps NUnit from 4.1.0 to 4.5.0
Bumps NUnit3TestAdapter from 4.6.0 to 6.1.0
Bumps StackExchange.Redis from 2.9.25 to 2.11.8
Bumps System.IdentityModel.Tokens.Jwt from 8.6.1 to 8.16.0
Bumps System.Numerics.Tensors from 9.0.9 to 10.0.3

---
updated-dependencies:
- dependency-name: diskann-garnet
  dependency-version: 1.0.25
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-deps
- dependency-name: Microsoft.Extensions.Configuration.Binder
  dependency-version: 10.0.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-deps
- dependency-name: Microsoft.Extensions.Configuration.Json
  dependency-version: 10.0.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-deps
- dependency-name: Microsoft.Extensions.Logging
  dependency-version: 10.0.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-deps
- dependency-name: Microsoft.Extensions.Logging.Configuration
  dependency-version: 10.0.3
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: nuget-deps
- dependency-name: Microsoft.Extensions.Logging.Console
  dependency-version: 10.0.3
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: nuget-deps
- dependency-name: Microsoft.IdentityModel.Protocols.OpenIdConnect
  dependency-version: 8.16.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-deps
- dependency-name: System.IdentityModel.Tokens.Jwt
  dependency-version: 8.16.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-deps
- dependency-name: Microsoft.IdentityModel.Validators
  dependency-version: 8.16.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-deps
- dependency-name: Microsoft.NET.Test.Sdk
  dependency-version: 18.3.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-deps
- dependency-name: NUnit
  dependency-version: 4.5.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-deps
- dependency-name: NUnit3TestAdapter
  dependency-version: 6.1.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: nuget-deps
- dependency-name: StackExchange.Redis
  dependency-version: 2.11.8
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-deps
- dependency-name: System.Numerics.Tensors
  dependency-version: 10.0.3
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: nuget-deps
...

Signed-off-by: dependabot[bot] <[email protected]>

* fix changes in API

* revert unit test upgrade

* Add ConfigureAwait(false) to all test await expressions to fix NUnit 4.5 deadlock (#1593)

* Initial plan

* Add .ConfigureAwait(false) to all await expressions in test files

Add .ConfigureAwait(false) to every await expression across 38 test
files under test/ to follow best practices for library/test code and
avoid potential deadlocks in synchronization contexts.

- Handles single-line and multi-line await expressions
- Handles ternary await expressions (both branches)
- Skips await foreach and await using (already correct)
- Excludes Task.Yield() which returns YieldAwaitable (no ConfigureAwait support)
- No changes outside test/ directory

Co-authored-by: Copilot <[email protected]>

---------

Co-authored-by: copilot-swe-agent[bot] <[email protected]>
Co-authored-by: Copilot <[email protected]>
Co-authored-by: Vasileios Zois <[email protected]>

* upgrade nunit

* Fix MigrateVector cluster tests for StackExchange.Redis 2.11.8 (#1595)

* Initial plan

* Fix MigrateVector tests to handle transient errors from StackExchange.Redis 2.11.8

Co-authored-by: vazois <[email protected]>

* Fix MigrateVector tests: use Exception catch + specific MOVED message patterns for SE.Redis 2.11.8

Co-authored-by: vazois <[email protected]>

---------

Co-authored-by: copilot-swe-agent[bot] <[email protected]>
Co-authored-by: vazois <[email protected]>

* revert diskann version

---------

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Vasileios Zois <[email protected]>
Co-authored-by: Copilot <[email protected]>
Co-authored-by: Copilot <[email protected]>
Co-authored-by: Vasileios Zois <[email protected]>
Co-authored-by: Tal Zaccai <[email protected]>

* fixing merge error

* Harden RESTORE validation and block malformed HLL payload misuse in PF operations (#1599)

* SkipChecksum validation testing and fix

* validate HLL format with skipRDBRestoreChecksumValidation

* add tests that cover different length encoding

* add full sparse stream validation

* skipRDBRestoreChecksumValidation for slot validation tests

* remove double validation and fix buffer swap

* reduce test overhead

* fix redirection tests for RESTORE

* eliminate SkipRDBRestoreChecksumValidation option

* Bump the nuget-deps group with 14 updates (#1592)

* Bump the nuget-deps group with 14 updates

Bumps diskann-garnet from 1.0.23 to 1.0.25
Bumps Microsoft.Extensions.Configuration.Binder from 10.0.2 to 10.0.3
Bumps Microsoft.Extensions.Configuration.Json from 10.0.2 to 10.0.3
Bumps Microsoft.Extensions.Logging from 10.0.2 to 10.0.3
Bumps Microsoft.Extensions.Logging.Configuration from 9.0.8 to 10.0.3
Bumps Microsoft.Extensions.Logging.Console from 9.0.8 to 10.0.3
Bumps Microsoft.IdentityModel.Protocols.OpenIdConnect from 8.6.1 to 8.16.0
Bumps Microsoft.IdentityModel.Validators from 8.6.1 to 8.16.0
Bumps Microsoft.NET.Test.Sdk from 18.0.1 to 18.3.0
Bumps NUnit from 4.1.0 to 4.5.0
Bumps NUnit3TestAdapter from 4.6.0 to 6.1.0
Bumps StackExchange.Redis from 2.9.25 to 2.11.8
Bumps System.IdentityModel.Tokens.Jwt from 8.6.1 to 8.16.0
Bumps System.Numerics.Tensors from 9.0.9 to 10.0.3

---
updated-dependencies:
- dependency-name: diskann-garnet
  dependency-version: 1.0.25
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-deps
- dependency-name: Microsoft.Extensions.Configuration.Binder
  dependency-version: 10.0.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-deps
- dependency-name: Microsoft.Extensions.Configuration.Json
  dependency-version: 10.0.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-deps
- dependency-name: Microsoft.Extensions.Logging
  dependency-version: 10.0.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-deps
- dependency-name: Microsoft.Extensions.Logging.Configuration
  dependency-version: 10.0.3
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: nuget-deps
- dependency-name: Microsoft.Extensions.Logging.Console
  dependency-version: 10.0.3
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: nuget-deps
- dependency-name: Microsoft.IdentityModel.Protocols.OpenIdConnect
  dependency-version: 8.16.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-deps
- dependency-name: System.IdentityModel.Tokens.Jwt
  dependency-version: 8.16.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-deps
- dependency-name: Microsoft.IdentityModel.Validators
  dependency-version: 8.16.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-deps
- dependency-name: Microsoft.NET.Test.Sdk
  dependency-version: 18.3.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-deps
- dependency-name: NUnit
  dependency-version: 4.5.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-deps
- dependency-name: NUnit3TestAdapter
  dependency-version: 6.1.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: nuget-deps
- dependency-name: StackExchange.Redis
  dependency-version: 2.11.8
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-deps
- dependency-name: System.Numerics.Tensors
  dependency-version: 10.0.3
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: nuget-deps
...

Signed-off-by: dependabot[bot] <[email protected]>

* fix changes in API

* revert unit test upgrade

* Add ConfigureAwait(false) to all test await expressions to fix NUnit 4.5 deadlock (#1593)

* Initial plan

* Add .ConfigureAwait(false) to all await expressions in test files

Add .ConfigureAwait(false) to every await expression across 38 test
files under test/ to follow best practices for library/test code and
avoid potential deadlocks in synchronization contexts.

- Handles single-line and multi-line await expressions
- Handles ternary await expressions (both branches)
- Skips await foreach and await using (already correct)
- Excludes Task.Yield() which returns YieldAwaitable (no ConfigureAwait support)
- No changes outside test/ directory

Co-authored-by: Copilot <[email protected]>

---------

Co-authored-by: copilot-swe-agent[bot] <[email protected]>
Co-authored-by: Copilot <[email protected]>
Co-authored-by: Vasileios Zois <[email protected]>

* upgrade nunit

* Fix MigrateVector cluster tests for StackExchange.Redis 2.11.8 (#1595)

* Initial plan

* Fix MigrateVector tests to handle transient errors from StackExchange.Redis 2.11.8

Co-authored-by: vazois <[email protected]>

* Fix MigrateVector tests: use Exception catch + specific MOVED message patterns for SE.Redis 2.11.8

Co-authored-by: vazois <[email protected]>

---------

Co-authored-by: copilot-swe-agent[bot] <[email protected]>
Co-authored-by: vazois <[email protected]>

* revert diskann version

---------

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Vasileios Zois <[email protected]>
Co-authored-by: Copilot <[email protected]>
Co-authored-by: Copilot <[email protected]>
Co-authored-by: Vasileios Zois <[email protected]>
Co-authored-by: Tal Zaccai <[email protected]>

* cleanup unused properties

* add more comments at HLL validation

* add test that bypasses crc check by faking it while corrupting the HLL payload

---------

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Copilot <[email protected]>
Co-authored-by: Copilot <[email protected]>
Co-authored-by: Tal Zaccai <[email protected]>

* Pin dompurify to 3.3.1 to resolve Dependabot security alerts (#1604)

* Initial plan

* Initial plan for fixing dependabot security issues

Co-authored-by: TalZaccai <[email protected]>

* Fix dompurify vulnerability: upgrade to 3.3.1 via overrides and resolutions

Co-authored-by: TalZaccai <[email protected]>

* Remove resolutions from package.json per review feedback

Co-authored-by: TalZaccai <[email protected]>

---------

Co-authored-by: copilot-swe-agent[bot] <[email protected]>
Co-authored-by: TalZaccai <[email protected]>
Co-authored-by: Tal Zaccai <[email protected]>

* Bump svgo from 3.3.2 to 3.3.3 in /website (#1608)

Bumps [svgo](https://github.com/svg/svgo) from 3.3.2 to 3.3.3.
- [Release notes](https://github.com/svg/svgo/releases)
- [Commits](svg/svgo@v3.3.2...v3.3.3)

---
updated-dependencies:
- dependency-name: svgo
  dependency-version: 3.3.3
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* Avoid NUnit async test-context capture in Tsavorite tests (#1614)

* add configureAwait(false) to async await calls

* manual search configureAwait

* fix formatting

* fix formatting for Tsavorite

* Harden Offset Validation for Bitmap Operations (#1610)

* bound validation for max 512MB strings

* add BITPOS validation

* add BITCOUNT offset validation

* addressing comments

* fix slot verification test

* addressing comments

* making check in backend bitfield call Debug.Assert

* fix formatting

* fix Release build

* merge error fix

* Fix TTL rounding to match Redis behavior (#1602)

* Fix TTL rounding to match Redis behavior (#1389)

Redis rounds TTL seconds to the nearest integer (equivalent to (ms+500)/1000),
while Garnet was truncating (flooring) via a direct (long) cast. This caused
SET+EXPIRE 10+TTL to return 9 instead of 10 when called immediately.

Fix: Use Math.Round(MidpointRounding.AwayFromZero) in both
SecondsFromDiffUtcNowTicks and MillisecondsFromDiffUtcNowTicks in
ConvertUtils.cs.

Added TtlRoundingTest to verify string and object keys return the expected
TTL value immediately after EXPIRE.

Co-authored-by: Copilot <[email protected]>

* updates

* updates

* increase test timing tolerance

* update

---------

Co-authored-by: Copilot <[email protected]>

* ci: use orphan commits for deploy branches to reduce clone size (#1603)

* ci: use orphan commits for deploy branches to reduce clone size

Use orphan commits (single commit, no history) for gh-pages,
allure_data_history, and benchmark branches to prevent large generated
files from accumulating across hundreds of commits, which bloats the
repository pack file and slows git clone.

- deploy-website: add force_orphan: true to peaceiris/actions-gh-pages
- nightly: rewrite allure_data_history push as orphan commit
- new workflow: daily squash of continuousbenchmark branches

Co-authored-by: Copilot <[email protected]>

* updates

---------

Co-authored-by: badrishc <[email protected]>
Co-authored-by: Copilot <[email protected]>
Co-authored-by: Tal Zaccai <[email protected]>

* Bump dompurify from 3.3.1 to 3.3.3 in /website (#1617)

Bumps [dompurify](https://github.com/cure53/DOMPurify) from 3.3.1 to 3.3.3.
- [Release notes](https://github.com/cure53/DOMPurify/releases)
- [Commits](cure53/DOMPurify@3.3.1...3.3.3)

---
updated-dependencies:
- dependency-name: dompurify
  dependency-version: 3.3.3
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* update lua block list (#1621)

* add more functions to block list

* fix test

---------

Co-authored-by: badrishc <[email protected]>

* format

* merge error fix

* remove merge error

---------

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Vasileios Zois <[email protected]>
Co-authored-by: Badrish Chandramouli <[email protected]>
Co-authored-by: Copilot <[email protected]>
Co-authored-by: Copilot <[email protected]>
Co-authored-by: Vasileios Zois <[email protected]>
Co-authored-by: badrishc <[email protected]>
@github-actions github-actions Bot locked and limited conversation to collaborators May 3, 2026
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Labels

dependencies Pull requests that update a dependency file .NET Pull requests that update .net code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

4 participants