deps: Bump the all-dependencies group with 15 updates by dependabot[bot] · Pull Request #894 · ministryofjustice/CFO-CaseAssessmentTrackingSystem

This patch is updating our Project Templates for our Python starter app to ensure we depend on the latest version of React. This is out of an abundance of caution, as we don't depend on any of the react packages that were flagged as vulnerable in GHSA-fv66-9v8q-g76r.

What's Changed

Bump patch version from 13.0.1 to 13.0.2 by @Copilot in Bump patch version from 13.0.1 to 13.0.2 microsoft/aspire#13324
Update React and ReactDOM to version 19.2.1 across all projects by @joperezr in Update React and ReactDOM to version 19.2.1 across all projects microsoft/aspire#13325

Full Changelog: microsoft/aspire@v13.0.1...v13.0.2

13.0.1 What's Changed

Merge internal changes by @joperezr in Merge internal changes microsoft/aspire#12896
[release/13.0] Fix Azure roles resources always redeploying by @github-actions[bot] in [release/13.0] Fix Azure roles resources always redeploying microsoft/aspire#12903
[release/13.0] Remove .py and .js files from being signed (#13005) by @eerhardt in [release/13.0] Remove .py and .js files from being signed (#13005) microsoft/aspire#13032
[release/13.0] Fix subscription ID not being disabled on Azure provisioning dialog by @github-actions[bot] in [release/13.0] Fix subscription ID not being disabled on Azure provisioning dialog microsoft/aspire#12913
[release/13.0] Default OpenAISettings.EnableSensitiveTelemetryData to TelemetryHelpers.EnableSensitiveDataDefault by @github-actions[bot] in [release/13.0] Default OpenAISettings.EnableSensitiveTelemetryData to TelemetryHelpers.EnableSensitiveDataDefault microsoft/aspire#13017
Bump patch version from 13.0.0 to 13.0.1 by @Copilot in Bump patch version from 13.0.0 to 13.0.1 microsoft/aspire#13167
[release/13.0] EndpointReference evaluation should wait on missing AllocatedEndpoint (#13074) by @karolz-ms in [release/13.0] EndpointReference evaluation should wait on missing AllocatedEndpoint (#13074) microsoft/aspire#13076
[release/13.0] Update to Npgsql 10 by @github-actions[bot] in [release/13.0] Update to Npgsql 10 microsoft/aspire#13166
[release/13.0] Update dependencies from microsoft/usvc-apiserver by @danegsta in [release/13.0] Update dependencies from microsoft/usvc-apiserver microsoft/aspire#13187

Full Changelog: microsoft/aspire@v13.0.0...v13.0.1

Commits viewable in compare view.

Updated Aspire.Hosting.RabbitMQ from 13.0.0 to 13.0.2.

Release notes

Sourced from Aspire.Hosting.RabbitMQ's releases.

13.0.2

This patch is updating our Project Templates for our Python starter app to ensure we depend on the latest version of React. This is out of an abundance of caution, as we don't depend on any of the react packages that were flagged as vulnerable in GHSA-fv66-9v8q-g76r.

What's Changed

Bump patch version from 13.0.1 to 13.0.2 by @Copilot in Bump patch version from 13.0.1 to 13.0.2 microsoft/aspire#13324
Update React and ReactDOM to version 19.2.1 across all projects by @joperezr in Update React and ReactDOM to version 19.2.1 across all projects microsoft/aspire#13325

Full Changelog: microsoft/aspire@v13.0.1...v13.0.2

13.0.1 What's Changed

Merge internal changes by @joperezr in Merge internal changes microsoft/aspire#12896
[release/13.0] Fix Azure roles resources always redeploying by @github-actions[bot] in [release/13.0] Fix Azure roles resources always redeploying microsoft/aspire#12903
[release/13.0] Remove .py and .js files from being signed (#13005) by @eerhardt in [release/13.0] Remove .py and .js files from being signed (#13005) microsoft/aspire#13032
[release/13.0] Fix subscription ID not being disabled on Azure provisioning dialog by @github-actions[bot] in [release/13.0] Fix subscription ID not being disabled on Azure provisioning dialog microsoft/aspire#12913
[release/13.0] Default OpenAISettings.EnableSensitiveTelemetryData to TelemetryHelpers.EnableSensitiveDataDefault by @github-actions[bot] in [release/13.0] Default OpenAISettings.EnableSensitiveTelemetryData to TelemetryHelpers.EnableSensitiveDataDefault microsoft/aspire#13017
Bump patch version from 13.0.0 to 13.0.1 by @Copilot in Bump patch version from 13.0.0 to 13.0.1 microsoft/aspire#13167
[release/13.0] EndpointReference evaluation should wait on missing AllocatedEndpoint (#13074) by @karolz-ms in [release/13.0] EndpointReference evaluation should wait on missing AllocatedEndpoint (#13074) microsoft/aspire#13076
[release/13.0] Update to Npgsql 10 by @github-actions[bot] in [release/13.0] Update to Npgsql 10 microsoft/aspire#13166
[release/13.0] Update dependencies from microsoft/usvc-apiserver by @danegsta in [release/13.0] Update dependencies from microsoft/usvc-apiserver microsoft/aspire#13187

Full Changelog: microsoft/aspire@v13.0.0...v13.0.1

Commits viewable in compare view.

Updated Aspire.Hosting.SqlServer from 13.0.0 to 13.0.2.

Release notes

Sourced from Aspire.Hosting.SqlServer's releases.

13.0.2

This patch is updating our Project Templates for our Python starter app to ensure we depend on the latest version of React. This is out of an abundance of caution, as we don't depend on any of the react packages that were flagged as vulnerable in GHSA-fv66-9v8q-g76r.

What's Changed

Bump patch version from 13.0.1 to 13.0.2 by @Copilot in Bump patch version from 13.0.1 to 13.0.2 microsoft/aspire#13324
Update React and ReactDOM to version 19.2.1 across all projects by @joperezr in Update React and ReactDOM to version 19.2.1 across all projects microsoft/aspire#13325

Full Changelog: microsoft/aspire@v13.0.1...v13.0.2

13.0.1 What's Changed

Merge internal changes by @joperezr in Merge internal changes microsoft/aspire#12896
[release/13.0] Fix Azure roles resources always redeploying by @github-actions[bot] in [release/13.0] Fix Azure roles resources always redeploying microsoft/aspire#12903
[release/13.0] Remove .py and .js files from being signed (#13005) by @eerhardt in [release/13.0] Remove .py and .js files from being signed (#13005) microsoft/aspire#13032
[release/13.0] Fix subscription ID not being disabled on Azure provisioning dialog by @github-actions[bot] in [release/13.0] Fix subscription ID not being disabled on Azure provisioning dialog microsoft/aspire#12913
[release/13.0] Default OpenAISettings.EnableSensitiveTelemetryData to TelemetryHelpers.EnableSensitiveDataDefault by @github-actions[bot] in [release/13.0] Default OpenAISettings.EnableSensitiveTelemetryData to TelemetryHelpers.EnableSensitiveDataDefault microsoft/aspire#13017
Bump patch version from 13.0.0 to 13.0.1 by @Copilot in Bump patch version from 13.0.0 to 13.0.1 microsoft/aspire#13167
[release/13.0] EndpointReference evaluation should wait on missing AllocatedEndpoint (#13074) by @karolz-ms in [release/13.0] EndpointReference evaluation should wait on missing AllocatedEndpoint (#13074) microsoft/aspire#13076
[release/13.0] Update to Npgsql 10 by @github-actions[bot] in [release/13.0] Update to Npgsql 10 microsoft/aspire#13166
[release/13.0] Update dependencies from microsoft/usvc-apiserver by @danegsta in [release/13.0] Update dependencies from microsoft/usvc-apiserver microsoft/aspire#13187

Full Changelog: microsoft/aspire@v13.0.0...v13.0.1

Commits viewable in compare view.

Updated AWSSDK.Extensions.NETCore.Setup from 4.0.3.14 to 4.0.3.15.

Release notes

Sourced from AWSSDK.Extensions.NETCore.Setup's releases.

No release notes found for this version range.

Commits viewable in compare view.

Updated AWSSDK.S3 from 4.0.13.1 to 4.0.14.1.

Release notes

Sourced from AWSSDK.S3's releases.

No release notes found for this version range.

Commits viewable in compare view.

Updated CodeBeam.MudBlazor.Extensions from 8.2.5 to 8.3.0.

Release notes

Sourced from CodeBeam.MudBlazor.Extensions's releases.

8.3.0 MudStepperExtended: Remake #569

Full CSP compatibility
Full navigation engine rewrite
New, consistent API surface
Enhanced result-step lifecycle
Introducing new IntroStep (An optional step show on start and not count as main steps)
Improved status logic (NotStarted, Continued, Completed, Skipped)
UI/UX refinements
Basic keyboard navigation and accessibility
Documentation updates
Additional unit tests

Remove Dependencies: Seperate Components that has external dependencies to new projects and packages #571

MudBarcode is now in CodeBeam.MudBlazor.Extensions.Qr package
MudCsvMapper is now in CodeBeam.MudBlazor.Extensions.Csv package

Breaking Changes

The old APİ in MudStepperExtended is obsoleted. They should work, but needed to switch new API. There is no expected programmatic breaking changes, but some visual design changes may seen if you redesign the component.
For MudBarcode and MudCsvMapper, you only need to install new packages. No need to change namespaces or other code.

8.2.6

Features

MudStepperExtended: Added MobileBreakpoint Parameter to automatically switch MobileView.
MudStepperExtended: Added new center option to StepperActionsJustify.
MudSelectExtended: Added AddNullItem and AddedNullItemText Parameters.

Bug Fixes

MudSelectExtended: Fixed interactive visual even Disabled parameter is set.

Commits viewable in compare view.

Updated FluentValidation from 12.1.0 to 12.1.1.

Release notes

Sourced from FluentValidation's releases.

No release notes found for this version range.

Commits viewable in compare view.

Updated FluentValidation.DependencyInjectionExtensions from 12.1.0 to 12.1.1.

Release notes

Sourced from FluentValidation.DependencyInjectionExtensions's releases.

No release notes found for this version range.

Commits viewable in compare view.

Updated NUnit3TestAdapter from 5.2.0 to 6.0.0.

Release notes

Sourced from NUnit3TestAdapter's releases.

6.0.0

See release notes

Commits viewable in compare view.

Updated Scrutor from 6.1.0 to 7.0.0.

Release notes

Sourced from Scrutor's releases.

7.0.0 What's Changed

Add Sponsors section to README by @khellang in Add Sponsors section to README khellang/Scrutor#255
Update to .NET 10 by @khellang in Update to .NET 10 khellang/Scrutor#265
Add NuGet packaging and GitHub Packages upload to CI by @khellang in Add NuGet packaging and GitHub Packages upload to CI khellang/Scrutor#266
Use MinVer for versioning by @khellang in Use MinVer for versioning khellang/Scrutor#267
Add support for service key registration by @mokarchi in Add support for service key registration khellang/Scrutor#262
Add support for exposing decorated services by @adamjones2 in Add support for exposing decorated services khellang/Scrutor#261
Add keyed service registration support by @A-Ebrahimzadeh-dev in Add keyed service registration support khellang/Scrutor#260

New Contributors

@mokarchi made their first contribution in Add support for service key registration khellang/Scrutor#262
@adamjones2 made their first contribution in Add support for exposing decorated services khellang/Scrutor#261
@A-Ebrahimzadeh-dev made their first contribution in Add keyed service registration support khellang/Scrutor#260

Full Changelog: khellang/Scrutor@v6.1.0...v7.0.0

Commits viewable in compare view.

Updated System.Linq.Dynamic.Core from 1.7.0 to 1.7.1.

Release notes

Sourced from System.Linq.Dynamic.Core's releases.

1.7.1 What's Changed

Fix Json when property value is null by @StefH in Fix Json when property value is null zzzprojects/System.Linq.Dynamic.Core#961
json: fix logic when property is not found by @StefH in json: fix logic when property is not found zzzprojects/System.Linq.Dynamic.Core#962
Fix NumberParser for integer < int.MinValue by @StefH in Fix NumberParser for integer < int.MinValue zzzprojects/System.Linq.Dynamic.Core#965

Full Changelog: zzzprojects/System.Linq.Dynamic.Core@v1.7.0...v1.7.1

Commits viewable in compare view.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps ActualLab.Fusion from 11.3.4 to 11.3.81 Bumps ActualLab.Fusion.Blazor from 11.3.4 to 11.3.81 Bumps ActualLab.Fusion.Ext.Services from 11.3.4 to 11.3.81 Bumps ActualLab.Generators from 11.3.4 to 11.3.81 Bumps aspire.cli from 13.0.0 to 13.0.2 Bumps Aspire.Hosting.RabbitMQ from 13.0.0 to 13.0.2 Bumps Aspire.Hosting.SqlServer from 13.0.0 to 13.0.2 Bumps AWSSDK.Extensions.NETCore.Setup from 4.0.3.14 to 4.0.3.15 Bumps AWSSDK.S3 from 4.0.13.1 to 4.0.14.1 Bumps CodeBeam.MudBlazor.Extensions from 8.2.5 to 8.3.0 Bumps FluentValidation from 12.1.0 to 12.1.1 Bumps FluentValidation.DependencyInjectionExtensions from 12.1.0 to 12.1.1 Bumps NUnit3TestAdapter from 5.2.0 to 6.0.0 Bumps Scrutor from 6.1.0 to 7.0.0 Bumps System.Linq.Dynamic.Core from 1.7.0 to 1.7.1 --- updated-dependencies: - dependency-name: ActualLab.Fusion dependency-version: 11.3.81 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-dependencies - dependency-name: ActualLab.Fusion.Blazor dependency-version: 11.3.81 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-dependencies - dependency-name: ActualLab.Fusion.Ext.Services dependency-version: 11.3.81 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-dependencies - dependency-name: ActualLab.Generators dependency-version: 11.3.81 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-dependencies - dependency-name: aspire.cli dependency-version: 13.0.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-dependencies - dependency-name: Aspire.Hosting.RabbitMQ dependency-version: 13.0.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-dependencies - dependency-name: Aspire.Hosting.SqlServer dependency-version: 13.0.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-dependencies - dependency-name: AWSSDK.Extensions.NETCore.Setup dependency-version: 4.0.3.15 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-dependencies - dependency-name: AWSSDK.S3 dependency-version: 4.0.14.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-dependencies - dependency-name: CodeBeam.MudBlazor.Extensions dependency-version: 8.3.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-dependencies - dependency-name: FluentValidation dependency-version: 12.1.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-dependencies - dependency-name: FluentValidation.DependencyInjectionExtensions dependency-version: 12.1.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-dependencies - dependency-name: NUnit3TestAdapter dependency-version: 6.0.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: all-dependencies - dependency-name: Scrutor dependency-version: 7.0.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: all-dependencies - dependency-name: System.Linq.Dynamic.Core dependency-version: 1.7.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot · 2025-12-08T07:07:22Z

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml

dependabot Bot added .NET Pull requests that update .NET code dependencies Pull requests that update a dependency file labels Dec 7, 2025

dependabot Bot requested review from a team as code owners December 7, 2025 04:29

dependabot Bot added dependencies Pull requests that update a dependency file .NET Pull requests that update .NET code labels Dec 7, 2025

Carl Sixsmith (carlsixsmith-moj) closed this Dec 8, 2025

dependabot Bot deleted the dependabot/nuget/dot-config/main/all-dependencies-84f8478eeb branch December 8, 2025 07:07

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

deps: Bump the all-dependencies group with 15 updates#894

deps: Bump the all-dependencies group with 15 updates#894
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/nuget/dot-config/main/all-dependencies-84f8478eeb

dependabot Bot commented on behalf of github Dec 7, 2025

Uh oh!

dependabot Bot commented on behalf of github Dec 8, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Conversation

dependabot Bot commented on behalf of github Dec 7, 2025

13.0.2

What's Changed

13.0.1

What's Changed

13.0.2

What's Changed

13.0.1

What's Changed

13.0.2

What's Changed

13.0.1

What's Changed

8.3.0

MudStepperExtended: Remake #​569

Remove Dependencies: Seperate Components that has external dependencies to new projects and packages #​571

Breaking Changes

8.2.6

Features

Bug Fixes

6.0.0

7.0.0

What's Changed

New Contributors

1.7.1

What's Changed

Uh oh!

dependabot Bot commented on behalf of github Dec 8, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

MudStepperExtended: Remake #569

Remove Dependencies: Seperate Components that has external dependencies to new projects and packages #571