Bump the deps group in /src with 9 updates

[dependabot]

Bumps the deps group in /src with 9 updates:

Package	From	To
Nox.Secrets	7.0.204	7.0.207
Nox.Secrets.Abstractions	7.0.204	7.0.207
Nox.Solution	7.0.204	7.0.207
Nox.Yaml	7.0.204	7.0.207
Nox.Secrets.Azure	7.0.204	7.0.207
System.IdentityModel.Tokens.Jwt	7.3.1	7.4.0
Nox.Secrets.Abstractions	7.0.204	7.0.207
Nox.Solution	7.0.204	7.0.207
Nox.Yaml	7.0.204	7.0.207
Nox.Solution	7.0.204	7.0.207
Nox.Yaml	7.0.204	7.0.207
YamlDotNet	15.1.1	15.1.2
Nox.Secrets.Azure	7.0.204	7.0.207
Nox.Secrets.Abstractions	7.0.204	7.0.207
Nox.Solution	7.0.204	7.0.207
Nox.Yaml	7.0.204	7.0.207
Nox.Types	7.0.204	7.0.207
Microsoft.Identity.Web	2.17.0	2.17.1
System.IdentityModel.Tokens.Jwt	7.3.1	7.4.0

Updates Nox.Secrets from 7.0.204 to 7.0.207

Commits

• See full diff in compare view

Updates Nox.Secrets.Abstractions from 7.0.204 to 7.0.207

Commits

• See full diff in compare view

Updates Nox.Solution from 7.0.204 to 7.0.207

Commits

• See full diff in compare view

Updates Nox.Yaml from 7.0.204 to 7.0.207

Release notes

Sourced from Nox.Yaml's releases.

v7.0.207

No release notes provided.

v7.0.206

What's Changed

• disable cluster index for guid key by @​rochar in NoxOrg/Nox#1447

Full Changelog: NoxOrg/Nox@v7.0.205...v7.0.206

v7.0.205

No release notes provided.

Commits

• 72747d6 load sql entity builders from infrastructure componet (#1448)
• 51b5c67 disable cluster index for guid key (#1447)
• b911dd2 Fix NOX Issue#667 (#1406)
• See full diff in compare view

Updates Nox.Secrets.Azure from 7.0.204 to 7.0.207

Commits

• See full diff in compare view

Updates System.IdentityModel.Tokens.Jwt from 7.3.1 to 7.4.0

Release notes

Sourced from System.IdentityModel.Tokens.Jwt's releases.

7.4.0

New Features:

• Introduced an injection point for external metadata management and adjusted the issuer Last Known Good (LKG) to maintain the state within the issuer validator. See PR #2480.
• Made an internal virtual method public, enabling users to provide signature providers. See PR #2497.

Performance Improvements:

• Added a new JsonWebToken constructor that accepts Memory for improved performance, along with enhancements to existing constructors. More information can be found in issue #2487 and in PR #2458.

Fundamentals:

• Resolved the issue of duplicated log messages in the source code and made IDX10506 log message more specific. For more details, refer to PR #2481.
• Enhanced Json serialization by ensuring the complete object is always read. This improvement can be found in PR #2491.

Engineering Excellence:

• Streamlined the build and release process by replacing the dependency on updateAssemblyInfo.ps1 with the Version property. Check out the details in PR #2494.
• Excluded the packing of Benchmark and TestApp projects for a more efficient process. Details available in PR #2496.

7.4.0-preview1

Performance Improvements:

• The existing JsonWebToken constructors now utilizes ReadOnlyMemory and Span to extract token segments, eliminating the need for string.split operations.
• A new constructor has been introduced that accepts ReadOnlyMemory of an encoded token. See issue #2487.

Performance Assessment on .NET 8:

• When using the preview version and opting for the constructor that accepts a string for the encoded token, the generation of a JWS yields a 3.95% decrease in memory usage, a 4.52% reduction in Gen0 and a 4.61% decrease in execution time compared to the latest release.
• The performance of the constructor that accepts ReadOnlyMemory is comparable to the constructor accepting a string for the encoded token, both for JWS and JWE.

Preview branch:

Dev (main) branch:

View the benchmarks here.

Changelog

Sourced from System.IdentityModel.Tokens.Jwt's changelog.

7.4.0

New Features:

• Introduced an injection point for external metadata management and adjusted the issuer Last Known Good (LKG) to maintain the state within the issuer validator. See PR #2480.
• Made an internal virtual method public, enabling users to provide signature providers. See PR #2497.

Performance Improvements:

• Added a new JsonWebToken constructor that accepts Memory for improved performance, along with enhancements to existing constructors. More information can be found in issue #2487 and in PR #2458.

Fundamentals:

• Resolved the issue of duplicated log messages in the source code and made IDX10506 log message more specific. For more details, refer to PR #2481.
• Enhanced Json serialization by ensuring the complete object is always read. This improvement can be found in PR #2491.

Engineering Excellence:

• Streamlined the build and release process by replacing the dependency on updateAssemblyInfo.ps1 with the Version property. Check out the details in PR #2494.
• Excluded the packing of Benchmark and TestApp projects for a more efficient process. Details available in PR #2496.

Commits

• fc61f2c Update ChangeLog for v7.4.0 (#2500)
• 27edb04 Move virtual methods to public in Signature Provider (#2497)
• d5dc77e Adds JsonWebToken Constructor that accepts Memory<char> (#2458)
• d28f795 Marcinzo/issuervalidatormetadata (#2480)
• 703639d Disable pack for projects (#2496)
• 1fb551d Replace AssemblyVersion with Version (#2494)
• 051d164 Move to next token when reading object.
• e983060 update to next release version
• See full diff in compare view

Updates Nox.Secrets.Abstractions from 7.0.204 to 7.0.207

Commits

• See full diff in compare view

Updates Nox.Solution from 7.0.204 to 7.0.207

Commits

• See full diff in compare view

Updates Nox.Yaml from 7.0.204 to 7.0.207

Release notes

Sourced from Nox.Yaml's releases.

v7.0.207

No release notes provided.

v7.0.206

What's Changed

• disable cluster index for guid key by @​rochar in NoxOrg/Nox#1447

Full Changelog: NoxOrg/Nox@v7.0.205...v7.0.206

v7.0.205

No release notes provided.

Commits

• 72747d6 load sql entity builders from infrastructure componet (#1448)
• 51b5c67 disable cluster index for guid key (#1447)
• b911dd2 Fix NOX Issue#667 (#1406)
• See full diff in compare view

Updates Nox.Solution from 7.0.204 to 7.0.207

Commits

• See full diff in compare view

Updates Nox.Yaml from 7.0.204 to 7.0.207

Release notes

Sourced from Nox.Yaml's releases.

v7.0.207

No release notes provided.

v7.0.206

What's Changed

• disable cluster index for guid key by @​rochar in NoxOrg/Nox#1447

Full Changelog: NoxOrg/Nox@v7.0.205...v7.0.206

v7.0.205

No release notes provided.

Commits

• 72747d6 load sql entity builders from infrastructure componet (#1448)
• 51b5c67 disable cluster index for guid key (#1447)
• b911dd2 Fix NOX Issue#667 (#1406)
• See full diff in compare view

Updates YamlDotNet from 15.1.1 to 15.1.2

Release notes

Sourced from YamlDotNet's releases.

Release 15.1.2

• Merge pull request #912 from EdwardCooke/ec-732
  Fixed #732, quote strings starting with whitespace characters

Commits

• 7ae209b Quoted test changes to not log to stdout
• 33ed33b Merge pull request #912 from EdwardCooke/ec-732
• 66c68a2 Fixed #732, quote strings starting with whitespace characters
• See full diff in compare view

Updates Nox.Secrets.Azure from 7.0.204 to 7.0.207

Commits

• See full diff in compare view

Updates Nox.Secrets.Abstractions from 7.0.204 to 7.0.207

Commits

• See full diff in compare view

Updates Nox.Solution from 7.0.204 to 7.0.207

Commits

• See full diff in compare view

Updates Nox.Yaml from 7.0.204 to 7.0.207

Release notes

Sourced from Nox.Yaml's releases.

v7.0.207

No release notes provided.

v7.0.206

What's Changed

• disable cluster index for guid key by @​rochar in NoxOrg/Nox#1447

Full Changelog: NoxOrg/Nox@v7.0.205...v7.0.206

v7.0.205

No release notes provided.

Commits

• 72747d6 load sql entity builders from infrastructure componet (#1448)
• 51b5c67 disable cluster index for guid key (#1447)
• b911dd2 Fix NOX Issue#667 (#1406)
• See full diff in compare view

Updates Nox.Types from 7.0.204 to 7.0.207

Commits

• See full diff in compare view

Updates Microsoft.Identity.Web from 2.17.0 to 2.17.1

Release notes

Sourced from Microsoft.Identity.Web's releases.

2.17.1

• Updated to Microsoft.IdentityModel.* 7.4.0

New features

• DownstreamApi now automatically processes claims challenge from web APIs which are CAE enabled, provided you set "ClientCapablities" : ["cp1"] in the configuation. See issue #2550.

Bug fixes

• Fixes the use of ServiceDescriptor for containers which have keyed services present. This can be an issue on .NET 8.0. See issue #2676 for details.

Engineering excellence

• Calls to ConfidentialClientApplicationBuilderExtension.WithClientCredentials are fully async. See issue #2566 for details.

Changelog

Sourced from Microsoft.Identity.Web's changelog.

2.17.1

• Updated to Microsoft.IdentityModel.* 7.4.0

New features

• DownstreamApi now automatically processes claims challenge from web APIs which are CAE enabled, provided you set "ClientCapablities" : ["cp1"] in the configuation. See issue #2550.

Bug fixes

• Fixes the use of ServiceDescriptor for containers which have keyed services present. This can be an issue on .NET 8.0. See issue #2676 for details.

Engineering excellence

• Calls to ConfidentialClientApplicationBuilderExtension.WithClientCredentials are fully async. See issue #2566 for details.

Commits

• 8473045 changelog for 2.17.1 (#2682)
• 4355c93 update to identitymodel 7.4.0 (#2683)
• 407db82 IDownstreamApi handles Continuous Access Evaluation (CAE) (#2616)
• ced8591 Make ConfidentialClientApplicationBuilderExtension.WithClientCredentials asyn...
• b6cc9eb Fix ServiceDescriptor access when Keyed Services are present (#2676)
• 7ca44be Stabilize UI and Unit Tests (#2669)
• 397fce7 Changelog for IdWeb 2.17.0 (#2668)
• See full diff in compare view

Updates System.IdentityModel.Tokens.Jwt from 7.3.1 to 7.4.0

Release notes

Sourced from System.IdentityModel.Tokens.Jwt's releases.

7.4.0

New Features:

• Introduced an injection point for external metadata management and adjusted the issuer Last Known Good (LKG) to maintain the state within the issuer validator. See PR #2480.
• Made an internal virtual method public, enabling users to provide signature providers. See PR #2497.

Performance Improvements:

• Added a new JsonWebToken constructor that accepts Memory for improved performance, along with enhancements to existing constructors. More information can be found in issue #2487 and in PR #2458.

Fundamentals:

• Resolved the issue of duplicated log messages in the source code and made IDX10506 log message more specific. For more details, refer to PR #2481.
• Enhanced Json serialization by ensuring the complete object is always read. This improvement can be found in PR #2491.

Engineering Excellence:

• Streamlined the build and release process by replacing the dependency on updateAssemblyInfo.ps1 with the Version property. Check out the details in PR #2494.
• Excluded the packing of Benchmark and TestApp projects for a more efficient process. Details available in PR #2496.

7.4.0-preview1

Performance Improvements:

• The existing JsonWebToken constructors now utilizes ReadOnlyMemory and Span to extract token segments, eliminating the need for string.split operations.
• A new constructor has been introduced that accepts ReadOnlyMemory of an encoded token. See issue #2487.

Performance Assessment on .NET 8:

• When using the preview version and opting for the constructor that accepts a string for the encoded token, the generation of a JWS yields a 3.95% decrease in memory usage, a 4.52% reduction in Gen0 and a 4.61% decrease in execution time compared to the latest release.
• The performance of the constructor that accepts ReadOnlyMemory is comparable to the constructor accepting a string for the encoded token, both for JWS and JWE.

Preview branch:

Dev (main) branch:

View the benchmarks here.

Changelog

Sourced from System.IdentityModel.Tokens.Jwt's changelog.

7.4.0

New Features:

• Introduced an injection point for external metadata management and adjusted the issuer Last Known Good (LKG) to maintain the state within the issuer validator. See PR #2480.
• Made an internal virtual method public, enabling users to provide signature providers. See PR #2497.

Performance Improvements:

• Added a new JsonWebToken constructor that accepts Memory for improved performance, along with enhancements to existing constructors. More information can be found in issue #2487 and in PR #2458.

Fundamentals:

• Resolved the issue of duplicated log messages in the source code and made IDX10506 log message more specific. For more details, refer to PR #2481.
• Enhanced Json serialization by ensuring the complete object is always read. This improvement can be found in PR #2491.

Engineering Excellence:

• Streamlined the build and release process by replacing the dependency on updateAssemblyInfo.ps1 with the Version property. Check out the details in PR #2494.
• Excluded the packing of Benchmark and TestApp projects for a more efficient process. Details available in PR #2496.

Commits

• fc61f2c Update ChangeLog for v7.4.0 (#2500)
• 27edb04 Move virtual methods to public in Signature Provider (#2497)
• d5dc77e Adds JsonWebToken Constructor that accepts Memory<char> (#2458)
• d28f795 Marcinzo/issuervalidatormetadata (#2480)
• 703639d Disable pack for projects (#2496)
• 1fb551d Replace AssemblyVersion with Version (#2494)
• 051d164 Move to next token when reading object.
• e983060 update to next release version
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.