Skip to content

Bump the dotnet group with 4 updates#2160

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/nuget/docs/azure/sdk/snippets/unit-testing/dotnet-e59e37e942
Open

Bump the dotnet group with 4 updates#2160
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/nuget/docs/azure/sdk/snippets/unit-testing/dotnet-e59e37e942

Conversation

@dependabot
Copy link
Copy Markdown

@dependabot dependabot bot commented on behalf of github Mar 25, 2026

Updated Azure.Core from 1.50.0 to 1.52.0.

Release notes

Sourced from Azure.Core's releases.

1.52.0

1.52.0 (2026-03-23)

Features Added

  • Added IndonesiaCentral, NewZealandNorth, and MalaysiaWest locations to AzureLocation struct.
  • Added a JSON schema segment to the NuGet package that provides IntelliSense and validation for AzureClients configuration in appsettings.json, including Retry and Diagnostics options.

Bugs Fixed

  • Fixed implicit conversion operators to not throw exceptions on null inputs per Framework Design Guidelines. Operators now return safe defaults: null for reference types, default for value types.
  • Fixed RequestContent.Dispose() to be idempotent and thread-safe, preventing ArrayPool buffers from being returned multiple times when disposed concurrently or repeatedly.
  • Fixed HttpClientTransport to correctly set the Host header on outgoing requests when explicitly specified, rather than falling through to TryAddWithoutValidation.

Breaking Changes

  • Added nullability annotations to implicit conversion operator parameters for Response<T>, AzureLocation, ContentType, ResourceType, RequestContent, and DynamicData to indicate that null is a valid input. This change was made because throwing exceptions from implicit conversions violates the Framework Design Guidelines.
  • Updated RequestContent implicit conversion operators to return nullable RequestContent? to accurately reflect that null inputs produce null outputs.

Commits viewable in compare view.

Updated Azure.Security.KeyVault.Secrets from 4.8.0 to 4.9.0.

Release notes

Sourced from Azure.Security.KeyVault.Secrets's releases.

4.9.0

4.9.0 (2026-02-25)

Features Added

  • Added SecretClientSettings to support creating a SecretClient from IConfiguration, including configuration-based credential resolution and dependency injection registration.
  • Added the outContentType query parameter to the SecretClient.GetSecret and SecretClient.GetSecretAsync to specify the format in which the certificate will be returned.
  • Added the previousVersion property to SecretProperties.

Other Changes

  • The default service version is now 2025-07-01.

Commits viewable in compare view.

Updated coverlet.collector from 6.0.4 to 8.0.1.

Release notes

Sourced from coverlet.collector's releases.

8.0.1

Fixed

  • Fix [BUG] TypeInitializationException when targeting .NET Framework #​1818
  • Fix [BUG] coverlet.MTP build fails with CS0400 due to developmentDependency=true #​1827

Improvements

  • Additional improvements needed for .NET Framework instrumentation type import #​1825

Diff between 8.0.0 and 8.0.1

8.0.0

Special Thanks: A huge thank you to @​Bertk for driving the majority of the work in this release! 🎉

Fixed

Improvements

  • Coverlet MTP extension feature #​1788
  • Generate SBOM for nuget packages #​1752
  • Use multi targets projects for coverlet.collector, coverlet.msbuild.tasks packages #​1742
  • Use .NET 8.0 target framework for coverlet.core and remove Newtonsoft.Json #​1733
  • Use latest System.CommandLine version #​1660
  • Upgraded minimum required .NET SDK and runtime to .NET 8.0 LTS (Long Term Support) (Breaking Change)
  • Use xunit.v3 for tests and example code

Diff between 6.0.4 and 8.0.0

Commits viewable in compare view.

Updated Microsoft.NET.Test.Sdk from 18.0.1 to 18.3.0.

Release notes

Sourced from Microsoft.NET.Test.Sdk's releases.

18.3.0

What's Changed

Internal fixes and updates

New Contributors

Commits viewable in compare view.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the dotnet group with 4 updates
94b4bc4 
Bumps Azure.Core from 1.50.0 to 1.52.0
Bumps Azure.Security.KeyVault.Secrets from 4.8.0 to 4.9.0
Bumps coverlet.collector from 6.0.4 to 8.0.1
Bumps Microsoft.NET.Test.Sdk from 18.0.1 to 18.3.0

---
updated-dependencies:
- dependency-name: Azure.Core
  dependency-version: 1.52.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dotnet
- dependency-name: Azure.Security.KeyVault.Secrets
  dependency-version: 4.9.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dotnet
- dependency-name: coverlet.collector
  dependency-version: 8.0.1
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: dotnet
- dependency-name: Microsoft.NET.Test.Sdk
  dependency-version: 18.3.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dotnet
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added .NET Pull requests that update .NET code dependencies Pull requests that update a dependency file labels Mar 25, 2026
This was referenced Mar 25, 2026
Closed
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file .NET Pull requests that update .NET code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants