Skip to content

Bump Aspire.Hosting.AppHost and 13 others #104

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 1 commit into from
Closed

Bump Aspire.Hosting.AppHost and 13 others #104

wants to merge 1 commit into from

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Sep 26, 2025
edited
Loading

Updated Aspire.Hosting.AppHost from 9.3.1 to 9.5.0.

Release notes

Sourced from Aspire.Hosting.AppHost's releases.

9.5.0

We are excited to share that our 9.5.0 release of Aspire has shipped! All of the packages are available in NuGet.org now. Head over to https://learn.microsoft.com/en-us/dotnet/aspire/whats-new/dotnet-aspire-9.5 to find what's new in 9.5.0!

What's Changed

9.4.2

What's Changed

Full Changelog: dotnet/aspire@v9.4.1...v9.4.2

9.4.1

What's Changed

Full Changelog: dotnet/aspire@v9.4.0...v9.4.1

9.4.0

We are excited to share that our 9.4.0 release of Aspire has shipped! All of the packages are available in NuGet.org now. Head over to https://learn.microsoft.com/en-us/dotnet/aspire/whats-new/dotnet-aspire-9.4 to find what's new in 9.4.0!

What's Changed

9.3.2

What's Changed

Full Changelog: dotnet/aspire@v9.3.1...v9.3.2

Commits viewable in compare view.

Pinned Azure.Identity at 1.16.0.

Release notes

Sourced from Azure.Identity's releases.

1.16.0

1.16.0 (2025-09-09)

Features Added

  • Added a new DefaultAzureCredential constructor that accepts a custom environment variable name for credential configuration. This provides flexibility beyond the default AZURE_TOKEN_CREDENTIALS environment variable. The constructor accepts any environment variable name and uses the same credential selection logic as the existing AZURE_TOKEN_CREDENTIALS processing.
  • Added DefaultAzureCredential.DefaultEnvironmentVariableName constant property that returns "AZURE_TOKEN_CREDENTIALS" for convenience when referencing the default environment variable name.
  • AzureCliCredential, AzurePowerShellCredential, and AzureDeveloperCliCredential now throw an AuthenticationFailedException when the TokenRequestContext includes claims, as these credentials do not support claims challenges. The exception message includes guidance for handling such scenarios.
  • When AZURE_TOKEN_CREDENTIALS or the equivalent custom environment variable is configured to ManagedIdentityCredential, the DefaultAzureCredential does not issue a probe request and performs retries with exponential backoff.

Bugs Fixed

  • Fixed AzureDeveloperCliCredential hanging when the AZD_DEBUG environment variable is set by adding the --no-prompt flag to prevent interactive prompts (#​52005).
  • BrokerCredential is now included in the chain when AZURE_TOKEN_CREDENTIALS is set to dev.
  • Fixed an issue that prevented ManagedIdentityCredential from utilizing the token cache in Workload Identity Federation environments.
  • Fixed a bug in DefaultAzureCredential that caused the credential chain to be constructed incorrectly when using AZURE_TOKEN_CREDENTIALS in combination with DefaultAzureCredentialOptions.

Other Changes

  • The BrokerCredential is now always included in the DefaultAzureCredential chain. If the Azure.Identity.Broker package is not referenced, an exception will be thrown when GetToken is called, making its behavior consistent with the rest of the credentials in the chain.
  • Updated Microsoft.Identity.Client dependency to version 4.76.0.
  • Updated Microsoft.Identity.Client.Extensions.Msal dependency to version 4.76.0.

1.15.0

1.15.0 (2025-08-07)

Breaking Changes

Behavioral Breaking Changes

  • Deprecated SharedTokenCacheCredential. The supporting credential (SharedTokenCacheCredential) was a legacy mechanism for authenticating clients using credentials provided to Visual Studio. For brokered authentication, consider using InteractiveBrowserCredential instead. The following changes have been made:
    • SharedTokenCacheCredential class is marked as [Obsolete] and [EditorBrowsable(EditorBrowsableState.Never)]
    • SharedTokenCacheCredentialOptions class is marked as [Obsolete] and [EditorBrowsable(EditorBrowsableState.Never)]
    • DefaultAzureCredentialOptions.ExcludeSharedTokenCacheCredential property is marked as [Obsolete] and [EditorBrowsable(EditorBrowsableState.Never)]
    • SharedTokenCacheUsername property is marked as [Obsolete] and [EditorBrowsable(EditorBrowsableState.Never)]
    • SharedTokenCacheCredential is no longer included in the DefaultAzureCredential authentication flow

Bugs Fixed

  • Tenant ID comparisons in credential options are now case-insensitive. This affects AdditionallyAllowedTenants values which will now be matched against tenant IDs without case sensitivity, making the authentication more resilient to case differences in tenant IDs returned from WWW-Authenticate challenges (#​51693).

Other Changes

  • BrokerAuthenticationCredential has been renamed as BrokerCredential.

  • Added the EditorBrowsable(Never) attribute to property VisualStudioCodeTenantId as TenantId is preferred. The VisualStudioCodeTenantId property exists only to provide backwards compatibility.

Commits viewable in compare view.

Pinned Azure.ResourceManager at 1.13.2.

Release notes

Sourced from Azure.ResourceManager's releases.

No release notes found for this version range.

Commits viewable in compare view.

Pinned Microsoft.Extensions.Caching.Memory at 9.0.9.

Release notes

Sourced from Microsoft.Extensions.Caching.Memory's releases.

9.0.9

Release

What's Changed

Full Changelog: dotnet/runtime@v9.0.8...v9.0.9

9.0.8

Release

What's Changed

Full Changelog: dotnet/runtime@v9.0.7...v9.0.8

9.0.7

Release

What's Changed

Full Changelog: dotnet/runtime@v9.0.6...v9.0.7

Commits viewable in compare view.

Pinned Microsoft.Extensions.Configuration.Abstractions at 9.0.9.

Release notes

Sourced from Microsoft.Extensions.Configuration.Abstractions's releases.

9.0.9

Release

What's Changed

Full Changelog: dotnet/runtime@v9.0.8...v9.0.9

9.0.8

Release

What's Changed

Full Changelog: dotnet/runtime@v9.0.7...v9.0.8

9.0.7

Release

What's Changed

Full Changelog: dotnet/runtime@v9.0.6...v9.0.7

Commits viewable in compare view.

Pinned Microsoft.Extensions.Configuration.Binder at 9.0.9.

Release notes

Sourced from Microsoft.Extensions.Configuration.Binder's releases.

9.0.9

Release

What's Changed

Full Changelog: dotnet/runtime@v9.0.8...v9.0.9

9.0.8

Release

What's Changed

Full Changelog: dotnet/runtime@v9.0.7...v9.0.8

9.0.7

Release

What's Changed

Full Changelog: dotnet/runtime@v9.0.6...v9.0.7

Commits viewable in compare view.

Updated Microsoft.Extensions.Http.Resilience from 9.6.0 to 9.9.0.

Release notes

Sourced from Microsoft.Extensions.Http.Resilience's releases.

9.9.0

Highlights

AI

  • Abstractions for remote MCP servers; response/approval flow support via new experimental types
  • Function approvals via new experimental types (e.g., ApprovalRequiredAIFunction, user input/approval request & response content).
  • Reasoning text streaming for OpenAI Responses ChatClient streaming.
  • AIFunction split into a base class to improve extensibility.
  • IChatReducer moved to Microsoft.Extensions.AI.Abstractions.
  • Updated to OpenAI 2.4.0 and genai standard convention 1.37.
  • Coalescing logic now treats ChatMessage.Role changes as new messages.
  • GetResponseAsync<T> now reads only the last message (bug fix).
  • OpenTelemetry ChatClient/EmbeddingGenerator logs raw additional properties (no key mangling).
  • Fixed empty annotated text chunk handling in streaming with OpenAI Assistants.

Telemetry & Diagnostics

  • HTTP diagnostics log query string params with proper redaction (emitted on url.query).
  • server.address telemetry emits host only (per OpenTelemetry semantic conventions).
  • Heuristics added to detect well-known model hosts.
  • Resource monitoring can consider Environment.CpuUsage.

New Contributors

Full Changelog: dotnet/extensions@v9.8.0...v9.9.0

9.8.0

What's Changed

9.7.2

Packages Released

What's Changed

  • Target .NET 8 for more stable runtime requirement by @​joelverhagen in #​6617

Full Changelog: dotnet/extensions@v9.7.1...v9.7.2

9.7.1

Packages Released

What's Changed

  • Merging changes from internal by @​joperezr in #​6588
  • Bump FunctionInvokingChatClient.MaximumIterationsPerRequest from 10 to 40 by @​stephentoub in #​6599
  • Expose M.E.AI.OpenAI input message conversions by @​stephentoub in #​6601
  • Add schema version to server.json in MCP template by @​joelverhagen in #​6606
  • Update MCP server template readme to show both VS Code and Visual Studio notes by @​jeffhandley in #​6591
  • Fix schema generation fo...

Description has been truncated

@dependabot
Bump Aspire.Hosting.AppHost and 13 others
8a19b79 
Bumps Aspire.Hosting.AppHost from 9.3.1 to 9.5.0
Bumps Azure.Identity from 1.14.0 to 1.16.0
Bumps Azure.ResourceManager from 1.13.1 to 1.13.2
Bumps Microsoft.Extensions.Caching.Memory from 9.0.6 to 9.0.9
Bumps Microsoft.Extensions.Configuration.Abstractions from 9.0.6 to 9.0.9
Bumps Microsoft.Extensions.Configuration.Binder from 9.0.6 to 9.0.9
Bumps Microsoft.Extensions.Http.Resilience from 9.6.0 to 9.9.0
Bumps Microsoft.Extensions.Logging from 9.0.6 to 9.0.9
Bumps Microsoft.Extensions.Options.ConfigurationExtensions from 9.0.6 to 9.0.9
Bumps Microsoft.Extensions.ServiceDiscovery from 9.3.1 to 9.5.0
Bumps MudBlazor from 8.8.0 to 8.12.0
Bumps NGitLab from 9.0.0 to 10.3.0
Bumps Swashbuckle.AspNetCore from 9.0.1 to 9.0.4
Bumps System.Formats.Asn1 from 9.0.6 to 9.0.9

---
updated-dependencies:
- dependency-name: Aspire.Hosting.AppHost
  dependency-version: 9.5.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: Azure.Identity
  dependency-version: 1.16.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: Azure.Identity
  dependency-version: 1.16.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: Azure.ResourceManager
  dependency-version: 1.13.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: Azure.ResourceManager
  dependency-version: 1.13.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: Microsoft.Extensions.Caching.Memory
  dependency-version: 9.0.9
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: Microsoft.Extensions.Caching.Memory
  dependency-version: 9.0.9
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: Microsoft.Extensions.Configuration.Abstractions
  dependency-version: 9.0.9
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: Microsoft.Extensions.Configuration.Abstractions
  dependency-version: 9.0.9
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: Microsoft.Extensions.Configuration.Binder
  dependency-version: 9.0.9
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: Microsoft.Extensions.Configuration.Binder
  dependency-version: 9.0.9
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: Microsoft.Extensions.Http.Resilience
  dependency-version: 9.9.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: Microsoft.Extensions.Logging
  dependency-version: 9.0.9
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: Microsoft.Extensions.Options.ConfigurationExtensions
  dependency-version: 9.0.9
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: Microsoft.Extensions.ServiceDiscovery
  dependency-version: 9.5.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: MudBlazor
  dependency-version: 8.12.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: NGitLab
  dependency-version: 10.3.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: production-dependencies
- dependency-name: NGitLab
  dependency-version: 10.3.0
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: production-dependencies
- dependency-name: Swashbuckle.AspNetCore
  dependency-version: 9.0.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: System.Formats.Asn1
  dependency-version: 9.0.9
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: System.Formats.Asn1
  dependency-version: 9.0.9
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added .NET Pull requests that update .NET code dependencies Pull requests that update a dependency file labels Sep 26, 2025
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Sep 29, 2025

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Sep 29, 2025

Looks like these dependencies are no longer updatable, so this is no longer needed.

@dependabot dependabot bot closed this Sep 29, 2025
@dependabot dependabot bot deleted the dependabot/nuget/src/aspire/CodeHub.Aspire.AppHost/production-dependencies-9f9dd27c90 branch September 29, 2025 11:14
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file .NET Pull requests that update .NET code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants