Skip to content

Backend dependency updates for March 2025#3659

Merged
imnasnainaec merged 21 commits intomasterfrom
deps-2025-03-backend
Mar 10, 2025
Merged

Backend dependency updates for March 2025#3659
imnasnainaec merged 21 commits intomasterfrom
deps-2025-03-backend

Conversation

@imnasnainaec
Copy link
Collaborator

@imnasnainaec imnasnainaec commented Mar 3, 2025
edited by jasonleenaylor
Loading

This change is Reviewable

dependabot bot and others added 19 commits March 1, 2025 12:04
@dependabot
Bump sillsdev/FieldWorks
24fdfed 
Bumps [sillsdev/FieldWorks](https://github.com/sillsdev/fieldworks) from 0ea8e06b13dc756abb9c76f083ff90369fb383bf to f7496760e23dd2491122d066ed388a2fc0565f91.
- [Release notes](https://github.com/sillsdev/fieldworks/releases)
- [Commits](sillsdev/FieldWorks@0ea8e06...f749676)

---
updated-dependencies:
- dependency-name: sillsdev/FieldWorks
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump icu.net from 3.0.0 to 3.0.1 in /Backend
c7a7d68 
Bumps [icu.net](https://github.com/sillsdev/icu-dotnet) from 3.0.0 to 3.0.1.
- [Release notes](https://github.com/sillsdev/icu-dotnet/releases)
- [Changelog](https://github.com/sillsdev/icu-dotnet/blob/master/CHANGELOG.md)
- [Commits](https://github.com/sillsdev/icu-dotnet/commits)

---
updated-dependencies:
- dependency-name: icu.net
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump OpenTelemetry.Instrumentation.AspNetCore in /Backend
0eaf67b 
Bumps [OpenTelemetry.Instrumentation.AspNetCore](https://github.com/open-telemetry/opentelemetry-dotnet-contrib) from 1.10.1 to 1.11.0.
- [Release notes](https://github.com/open-telemetry/opentelemetry-dotnet-contrib/releases)
- [Commits](open-telemetry/opentelemetry-dotnet-contrib@Instrumentation.AspNetCore-1.10.1...Resources.AWS-1.11.0)

---
updated-dependencies:
- dependency-name: OpenTelemetry.Instrumentation.AspNetCore
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump MongoDB.Driver from 3.1.0 to 3.2.1 in /Backend
0aa5435 
Bumps [MongoDB.Driver](https://github.com/mongodb/mongo-csharp-driver) from 3.1.0 to 3.2.1.
- [Release notes](https://github.com/mongodb/mongo-csharp-driver/releases)
- [Commits](mongodb/mongo-csharp-driver@v3.1.0...v3.2.1)

---
updated-dependencies:
- dependency-name: MongoDB.Driver
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump Microsoft.IdentityModel.Tokens and System.IdentityModel.Tokens.Jwt
3fa7677 
Bumps [Microsoft.IdentityModel.Tokens](https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet) and [System.IdentityModel.Tokens.Jwt](https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet). These dependencies needed to be updated together.

Updates `Microsoft.IdentityModel.Tokens` from 8.3.1 to 8.6.0
- [Release notes](https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/releases)
- [Changelog](https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/blob/dev/CHANGELOG.md)
- [Commits](AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet@8.3.1...8.6.0)

Updates `System.IdentityModel.Tokens.Jwt` from 8.3.1 to 8.6.0
- [Release notes](https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/releases)
- [Changelog](https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/blob/dev/CHANGELOG.md)
- [Commits](AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet@8.3.1...8.6.0)

---
updated-dependencies:
- dependency-name: Microsoft.IdentityModel.Tokens
  dependency-type: direct:production
  update-type: version-update:semver-minor
- dependency-name: System.IdentityModel.Tokens.Jwt
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump OpenTelemetry.Exporter.Console from 1.10.0 to 1.11.1 in /Backend
50187fc 
Bumps [OpenTelemetry.Exporter.Console](https://github.com/open-telemetry/opentelemetry-dotnet) from 1.10.0 to 1.11.1.
- [Release notes](https://github.com/open-telemetry/opentelemetry-dotnet/releases)
- [Changelog](https://github.com/open-telemetry/opentelemetry-dotnet/blob/main/RELEASENOTES.md)
- [Commits](open-telemetry/opentelemetry-dotnet@core-1.10.0...core-1.11.1)

---
updated-dependencies:
- dependency-name: OpenTelemetry.Exporter.Console
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump dotnet/sdk from 8.0.405-jammy to 8.0.406-jammy in /Backend
ab29e12 
Bumps dotnet/sdk from 8.0.405-jammy to 8.0.406-jammy.

---
updated-dependencies:
- dependency-name: dotnet/sdk
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump dotnet/aspnet from 8.0.12-jammy to 8.0.13-jammy in /Backend
c9e0a01 
Bumps dotnet/aspnet from 8.0.12-jammy to 8.0.13-jammy.

---
updated-dependencies:
- dependency-name: dotnet/aspnet
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump Microsoft.AspNetCore.Authentication.JwtBearer, Microsoft.Identit…
572626c 
…yModel.Tokens and System.IdentityModel.Tokens.Jwt

Bumps [Microsoft.AspNetCore.Authentication.JwtBearer](https://github.com/dotnet/aspnetcore), [Microsoft.IdentityModel.Tokens](https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet) and [System.IdentityModel.Tokens.Jwt](https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet). These dependencies needed to be updated together.

Updates `Microsoft.AspNetCore.Authentication.JwtBearer` from 8.0.12 to 8.0.13
- [Release notes](https://github.com/dotnet/aspnetcore/releases)
- [Changelog](https://github.com/dotnet/aspnetcore/blob/main/docs/ReleasePlanning.md)
- [Commits](dotnet/aspnetcore@v8.0.12...v8.0.13)

Updates `Microsoft.IdentityModel.Tokens` from 8.3.1 to 7.1.2
- [Release notes](https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/releases)
- [Changelog](https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/blob/dev/CHANGELOG.md)
- [Commits](AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet@8.3.1...7.1.2)

Updates `System.IdentityModel.Tokens.Jwt` from 8.3.1 to 7.1.2
- [Release notes](https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/releases)
- [Changelog](https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/blob/dev/CHANGELOG.md)
- [Commits](AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet@8.3.1...7.1.2)

---
updated-dependencies:
- dependency-name: Microsoft.AspNetCore.Authentication.JwtBearer
  dependency-type: direct:production
  update-type: version-update:semver-patch
- dependency-name: Microsoft.IdentityModel.Tokens
  dependency-type: direct:production
  update-type: version-update:semver-major
- dependency-name: System.IdentityModel.Tokens.Jwt
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot
Bump Microsoft.Extensions.Caching.Memory in /Backend.Tests
4720546 
Bumps [Microsoft.Extensions.Caching.Memory](https://github.com/dotnet/runtime) from 9.0.1 to 9.0.2.
- [Release notes](https://github.com/dotnet/runtime/releases)
- [Commits](dotnet/runtime@v9.0.1...v9.0.2)

---
updated-dependencies:
- dependency-name: Microsoft.Extensions.Caching.Memory
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@imnasnainaec
Merge remote-tracking branch 'origin/dependabot/nuget/Backend.Tests/m…
94be9da 
…ulti-dd89be0ab5' into deps-2025-03-backend
@imnasnainaec
Merge remote-tracking branch 'origin/dependabot/github_actions/sillsd…
6a943de 
…ev/FieldWorks-f7496760e23dd2491122d066ed388a2fc0565f91' into deps-2025-03-backend
@imnasnainaec
Merge remote-tracking branch 'origin/dependabot/nuget/Backend/icu.net…
23445ff 
…-3.0.1' into deps-2025-03-backend
@imnasnainaec
Merge remote-tracking branch 'origin/dependabot/nuget/Backend/OpenTel…
de3660b 
…emetry.Instrumentation.AspNetCore-1.11.0' into deps-2025-03-backend
@imnasnainaec
Merge remote-tracking branch 'origin/dependabot/nuget/Backend/MongoDB…
ab7762f 
….Driver-3.2.1' into deps-2025-03-backend
@imnasnainaec
Merge remote-tracking branch 'origin/dependabot/nuget/Backend/OpenTel…
084d250 
…emetry.Exporter.Console-1.11.1' into deps-2025-03-backend
@imnasnainaec
Merge remote-tracking branch 'origin/dependabot/docker/Backend/dotnet…
b022ff0 
…/sdk-8.0.406-jammy' into deps-2025-03-backend
@imnasnainaec
Merge remote-tracking branch 'origin/dependabot/docker/Backend/dotnet…
5195dbf 
…/aspnet-8.0.13-jammy' into deps-2025-03-backend
@imnasnainaec
Merge remote-tracking branch 'origin/dependabot/nuget/Backend.Tests/M…
7b1d949 
…icrosoft.Extensions.Caching.Memory-9.0.2' into deps-2025-03-backend
@imnasnainaec imnasnainaec added backend dependencies Pull requests that update a dependency file labels Mar 3, 2025
@imnasnainaec imnasnainaec self-assigned this Mar 3, 2025
@github-actions
Copy link

github-actions bot commented Mar 3, 2025
edited
Loading

⚠️ Commit Message Format Issues ⚠️
commit 4720546a4d:
3: B1 Line exceeds max length (99>80): "Bumps Microsoft.Extensions.Caching.Memory from 9.0.1 to 9.0.2."

commit 572626c47a:
1: T1 Title exceeds max length (118>72): "Bump Microsoft.AspNetCore.Authentication.JwtBearer, Microsoft.IdentityModel.Tokens and System.IdentityModel.Tokens.Jwt"
3: B1 Line exceeds max length (386>80): "Bumps Microsoft.AspNetCore.Authentication.JwtBearer, Microsoft.IdentityModel.Tokens and System.IdentityModel.Tokens.Jwt. These dependencies needed to be updated together."
7: B1 Line exceeds max length (85>80): "- Changelog"
11: B1 Line exceeds max length (112>80): "- Release notes"
12: B1 Line exceeds max length (121>80): "- Changelog"
13: B1 Line exceeds max length (119>80): "- Commits"
16: B1 Line exceeds max length (112>80): "- Release notes"
17: B1 Line exceeds max length (121>80): "- Changelog"
18: B1 Line exceeds max length (119>80): "- Commits"

commit 50187fcc32:
3: B1 Line exceeds max length (117>80): "Bumps OpenTelemetry.Exporter.Console from 1.10.0 to 1.11.1."
4: B1 Line exceeds max length (82>80): "- Release notes"
5: B1 Line exceeds max length (95>80): "- Changelog"
6: B1 Line exceeds max length (101>80): "- Commits"

commit 3fa76773b1:
3: B1 Line exceeds max length (299>80): "Bumps Microsoft.IdentityModel.Tokens and System.IdentityModel.Tokens.Jwt. These dependencies needed to be updated together."
6: B1 Line exceeds max length (112>80): "- Release notes"
7: B1 Line exceeds max length (121>80): "- Changelog"
8: B1 Line exceeds max length (119>80): "- Commits"
11: B1 Line exceeds max length (112>80): "- Release notes"
12: B1 Line exceeds max length (121>80): "- Changelog"
13: B1 Line exceeds max length (119>80): "- Commits"

commit 0aa5435661:
3: B1 Line exceeds max length (91>80): "Bumps MongoDB.Driver from 3.1.0 to 3.2.1."
5: B1 Line exceeds max length (83>80): "- Commits"

commit 0eaf67bdd8:
3: B1 Line exceeds max length (135>80): "Bumps OpenTelemetry.Instrumentation.AspNetCore from 1.10.1 to 1.11.0."
4: B1 Line exceeds max length (90>80): "- Release notes"
5: B1 Line exceeds max length (140>80): "- Commits"

commit 24fdfedb94:
3: B1 Line exceeds max length (158>80): "Bumps sillsdev/FieldWorks from 0ea8e06b13dc756abb9c76f083ff90369fb383bf to f7496760e23dd2491122d066ed388a2fc0565f91."
5: B1 Line exceeds max length (143>80): "- Commits"

@codecov
Copy link

codecov bot commented Mar 3, 2025
edited
Loading

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 74.27%. Comparing base (fa64415) to head (af27d11).
Report is 30 commits behind head on master.

Additional details and impacted files 
@@           Coverage Diff           @@
##           master    #3659   +/-   ##
=======================================
  Coverage   74.27%   74.27%           
=======================================
  Files         285      285           
  Lines       11116    11116           
  Branches     1370     1370           
=======================================
  Hits         8256     8256           
  Misses       2467     2467           
  Partials      393      393
Flag Coverage Δ
backend 83.89% <ø> (ø)
frontend 65.89% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
  • 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

@imnasnainaec imnasnainaec marked this pull request as ready for review March 7, 2025 14:50
andracc
andracc approved these changes Mar 10, 2025
View reviewed changes
Copy link
Collaborator

@andracc andracc left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Reviewed 3 of 4 files at r1, 1 of 1 files at r2, all commit messages.
Reviewable status: :shipit: complete! all files reviewed, all discussions resolved (waiting on @imnasnainaec)

@imnasnainaec imnasnainaec enabled auto-merge (squash) March 10, 2025 20:07
@imnasnainaec imnasnainaec merged commit ea4537e into master Mar 10, 2025
17 of 18 checks passed
@imnasnainaec imnasnainaec deleted the deps-2025-03-backend branch March 10, 2025 20:17
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@andracc andracc andracc approved these changes

Assignees

@imnasnainaec imnasnainaec

Labels

backend dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@imnasnainaec @andracc