Skip to content

deps: Bump the nuget-minor-patch group with 1 update#259

Closed
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/nuget/src/DLLPickle.Build/nuget-minor-patch-899835650f
Closed

deps: Bump the nuget-minor-patch group with 1 update#259
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/nuget/src/DLLPickle.Build/nuget-minor-patch-899835650f

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 23, 2026

Copy link
Copy Markdown
Contributor

Updated System.Security.Cryptography.ProtectedData from 4.5.0 to 4.7.0.

Release notes

Sourced from System.Security.Cryptography.ProtectedData's releases.

No release notes found for this version range.

Commits viewable in compare view.

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps System.Security.Cryptography.ProtectedData from 4.5.0 to 4.7.0

---
updated-dependencies:
- dependency-name: System.Security.Cryptography.ProtectedData
  dependency-version: 4.7.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-minor-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added .NET Pull requests that update .NET code dependencies Pull requests that update a dependency file labels Jun 23, 2026
@dependabot dependabot Bot requested a review from SamErde as a code owner June 23, 2026 19:25
@dependabot dependabot Bot added the .NET Pull requests that update .NET code label Jun 23, 2026

@dll-pickle-dependabot-updates dll-pickle-dependabot-updates Bot left a comment

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

✅ Auto-approved: NuGet version-update:semver-minor update

@dll-pickle-dependabot-updates dll-pickle-dependabot-updates Bot enabled auto-merge (squash) June 23, 2026 19:26
@github-actions

Copy link
Copy Markdown
Contributor

Dependency Review

The following issues were found:
  • ✅ 0 vulnerable package(s)
  • ✅ 0 package(s) with incompatible licenses
  • ✅ 0 package(s) with invalid SPDX license definitions
  • ⚠️ 8 package(s) with unknown licenses.
See the Details below.

License Issues

src/DLLPickle.Build/DLLPickle.csproj

PackageVersionLicenseIssue Type
Microsoft.Identity.Client4.85.1NullUnknown License
Microsoft.Identity.Client.Broker4.85.1NullUnknown License
Microsoft.Identity.Client.Extensions.Msal4.85.1NullUnknown License
Microsoft.IdentityModel.Abstractions8.19.1NullUnknown License
Microsoft.IdentityModel.JsonWebTokens8.19.1NullUnknown License
Microsoft.IdentityModel.Logging8.19.1NullUnknown License
Microsoft.IdentityModel.Tokens8.19.1NullUnknown License
System.IdentityModel.Tokens.Jwt8.19.1NullUnknown License

OpenSSF Scorecard

Scorecard details
PackageVersionScoreDetails
nuget/Microsoft.Bcl.Cryptography 10.0.2 UnknownUnknown
nuget/Microsoft.Identity.Client 4.85.1 UnknownUnknown
nuget/Microsoft.Identity.Client.Broker 4.85.1 UnknownUnknown
nuget/Microsoft.Identity.Client.Extensions.Msal 4.85.1 UnknownUnknown
nuget/Microsoft.IdentityModel.Abstractions 8.19.1 UnknownUnknown
nuget/Microsoft.IdentityModel.JsonWebTokens 8.19.1 UnknownUnknown
nuget/Microsoft.IdentityModel.Logging 8.19.1 UnknownUnknown
nuget/Microsoft.IdentityModel.Tokens 8.19.1 UnknownUnknown
nuget/System.Formats.Asn1 10.0.2 UnknownUnknown
nuget/System.IdentityModel.Tokens.Jwt 8.19.1 UnknownUnknown
nuget/System.Security.Cryptography.ProtectedData 4.7.0 🟢 3.1
Details
CheckScoreReason
Code-Review🟢 5Found 2/4 approved changesets -- score normalized to 5
Token-Permissions⚠️ -1No tokens found
Binary-Artifacts🟢 10no binaries found in the repo
Dangerous-Workflow⚠️ -1no workflows found
Maintained⚠️ 0project is archived
Packaging⚠️ -1packaging workflow not detected
CII-Best-Practices⚠️ 0no effort to earn an OpenSSF best practices badge detected
Pinned-Dependencies⚠️ -1no dependencies found
License⚠️ 0license file not detected
Fuzzing⚠️ 0project is not fuzzed
SAST⚠️ 0SAST tool is not run on all commits -- score normalized to 0
Signed-Releases⚠️ -1no releases found
Branch-Protection🟢 6branch protection is not maximal on development and all release branches
Security-Policy⚠️ 0security policy file not detected

Scanned Files

  • src/DLLPickle.Build/DLLPickle.csproj

@dependabot @github

dependabot Bot commented on behalf of github Jun 23, 2026

Copy link
Copy Markdown
Contributor Author

Superseded by #260.

@dependabot dependabot Bot closed this Jun 23, 2026
auto-merge was automatically disabled June 23, 2026 19:26

Pull request was closed

@dependabot dependabot Bot deleted the dependabot/nuget/src/DLLPickle.Build/nuget-minor-patch-899835650f branch June 23, 2026 19:26
@codacy-production

Copy link
Copy Markdown
Contributor

Up to standards ✅

🟢 Issues 0 issues

Results:
0 new issues

View in Codacy

🟢 Metrics 0 complexity · 0 duplication

Metric Results
Complexity 0 (≤ 100 complexity)
Duplication 0 (≤ 1 duplication)

View in Codacy

NEW Get contextual insights on your PRs based on Codacy's metrics, along with PR and Jira context, without leaving GitHub. Enable AI reviewer
TIP This summary will be updated as you push new changes.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file .NET Pull requests that update .NET code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants