build(deps): bump the default group in /src with 14 updates

[dependabot]

Bumps the default group in /src with 14 updates:

Package	From	To
Microsoft.NET.Test.Sdk	17.9.0	17.11.1
Microsoft.IdentityModel.Tokens	7.4.1	7.7.1
Microsoft.AspNetCore.Mvc.Testing	8.0.7	8.0.8
Microsoft.Extensions.Configuration.Binder	8.0.1	8.0.2
Microsoft.Extensions.Logging.Abstractions	8.0.0	8.0.1
Microsoft.EntityFrameworkCore	8.0.7	8.0.8
Microsoft.EntityFrameworkCore.InMemory	8.0.7	8.0.8
Microsoft.EntityFrameworkCore.Design	8.0.7	8.0.8
Microsoft.EntityFrameworkCore.Relational	8.0.7	8.0.8
Microsoft.VisualStudio.Azure.Containers.Tools.Targets	1.19.6	1.21.0
Microsoft.CodeAnalysis.CSharp.Scripting	4.5.0	4.11.0
Microsoft.AspNetCore.Authentication.JwtBearer	8.0.3	8.0.8
Microsoft.Extensions.Diagnostics.HealthChecks.EntityFrameworkCore	8.0.7	8.0.8
Microsoft.AspNetCore.Authorization	8.0.2	8.0.8

Updates Microsoft.NET.Test.Sdk from 17.9.0 to 17.11.1

Release notes

Sourced from Microsoft.NET.Test.Sdk's releases.

v17.11.1

What's Changed

• [rel/17.11] Forward error output from testhost as info by @​nohwnd in microsoft/vstest#5193

Full Changelog: microsoft/vstest@v17.11.0...v17.11.1

v17.11.0

What's Changed

• Add reference to the AdapterUtilities library in the spec docs. by @​peterwald in microsoft/vstest#4958
• Stack trace when localized, and new messages by @​nohwnd in microsoft/vstest#4944
• Fix single quote and space in F# pretty methods by @​nohwnd in microsoft/vstest#4969
• Update .NET runtimes to latest patch version by @​Evangelink in microsoft/vstest#4975
• Update dotnetcoretests.md by @​DickBaker in microsoft/vstest#4977
• Add list of known TestingPlatform dlls by @​nohwnd in microsoft/vstest#4983
• Update framework version used for testing, and test matrix by @​nohwnd in microsoft/vstest#4970
• Add output forwarding for .NET by @​nohwnd in microsoft/vstest#4988
• Remove usage of pt images before decomissioning by @​nohwnd in microsoft/vstest#4994
• chore: Add more details to acquistion section. by @​voroninp in microsoft/vstest#4999
• Simplify banner by @​nohwnd in microsoft/vstest#5013
• Forward standard output of testhost by @​nohwnd in microsoft/vstest#4998
• Add missing copyright header by @​MichaelSimons in microsoft/vstest#5020
• Add option to not share .NET Framework testhosts by @​nohwnd in microsoft/vstest#5018
• GetTypesToLoad Attribute cant be null by @​SimonCropp in microsoft/vstest#5054
• rawArgument in GetArgumentList cant be null by @​SimonCropp in microsoft/vstest#5056
• fix Atribute typo by @​SimonCropp in microsoft/vstest#5057
• remove unnecessary list alloc for 2 scenarios in TestRequestManager.GetSources by @​SimonCropp in microsoft/vstest#5058
• fix incompatiblity typo by @​SimonCropp in microsoft/vstest#5059
• remove redundant inline method in IsPlatformIncompatible by @​SimonCropp in microsoft/vstest#5060
• fix Sucess typo by @​SimonCropp in microsoft/vstest#5061
• use some null coalescing by @​SimonCropp in microsoft/vstest#5062
• Add cts into friends of TranslationLayer by @​jakubch1 in microsoft/vstest#5075
• Use built in sha1 for id generation by @​nohwnd in microsoft/vstest#5081
• All output in terminal logger by @​nohwnd in microsoft/vstest#5083
• Ignore env test by @​nohwnd in microsoft/vstest#5095
• Dispose XmlReader in XmlRunSettingsUtilities by @​omajid in microsoft/vstest#5094
• Bump to macos-12 build image by @​akoeplinger in microsoft/vstest#5101
• Handle ansi escape in terminal logger reporter by @​nohwnd in microsoft/vstest#5084
• remove disable interactive auth by @​nohwnd in microsoft/vstest#5110
• Error output as info in terminal logger by @​nohwnd in microsoft/vstest#5113
• Write dll instead of target on abort, rename errors by @​nohwnd in microsoft/vstest#5115
• • [rel/17.11] Update dependencies from devdiv/DevDiv/vs-code-coverage by @​dotnet-maestro in microsoft/vstest#5152

New Contributors

• @​peterwald made their first contribution in microsoft/vstest#4958
• @​DickBaker made their first contribution in microsoft/vstest#4977
• @​voroninp made their first contribution in microsoft/vstest#4999
• @​akoeplinger made their first contribution in microsoft/vstest#5101

... (truncated)

Commits

• 58dbd02 Revert "Do not publish to BAR when RTM version is built"
• aa62848 Do not publish to BAR when RTM version is built
• d824a2f Bump 17.11.1
• ed4ac92 Forward error output from testhost as info (#5193)
• c6ad3e3 Update dependencies from https://dev.azure.com/devdiv/DevDiv/_git/vs-code-cov...
• 910ca0d Fix output based test (#5131)
• 0518cea Rebrand to 17.11-release (#5128)
• 5b69fd3 Write dll instead of target on abort, rename errors (#5115)
• 7264afa Error output as info in terminal logger (#5113)
• 3d2ea06 remove disable interactive auth (#5110)
• Additional commits viewable in compare view

Updates Microsoft.IdentityModel.Tokens from 7.4.1 to 7.7.1

Release notes

Sourced from Microsoft.IdentityModel.Tokens's releases.

7.7.1

Bug Fix

• Re-add JsonSerializerPrimitives.TryAllStringClaimsAsDateTime which was removed as it is in an internal class, but due to InternalsVisibleTo can lead to a MissingMethodException if IdentityModel versions are not aligned. See PR #2734 for details.

7.7.0

CVE package updates

CVE-2024-30105

• A derived ClaimsIdentity where claim retrieval is case-sensitive. The current ClaimsIdentity, in .NET, retrieves claims in a case-insensitive manner which is different than querying the underlying SecurityToken. The new CaseSensitiveClaimsIdentity class provides consistent retrieval logic with SecurityToken. Opt in to the new behavior via an AppContext switch. See PR #2715 for details.

Performance improvement

• AppContext.TryGetSwitch statically caches internally but takes out a lock. .NET almost always caches these values. They're not expected to change while the process is running unlike normal config. IdentityModel now caches the value. See issue #2722 for details.

7.6.2

Bug Fix:

• Revert reduced allocations in AadIssuerValidator by not using string.Replace where appropriate due to an index out-of-range error.

7.6.1

New Features:

• Add missing metadata parameters to OpenIdConnectConfiguration. See issue #2498 for details.

Bug Fixes:

• Fix over-reporting of IDX14100. See issue #2058 and PR #2618 for details.
• JwtRegisteredClaimNames now contains previously missing Standard OpenIdConnect claims. See issue #1598 for details.

Performance Improvements:

• Reduced allocations in AadIssuerValidator by not using string.Replace where appropriate. See issue #2595 and PR #2597 for more details.
• No longer for every string claim, calling DateTime.TryParse on each value, whether it is expected to be a DateTime or not. See issue #2615 for details.

7.6.0

New Features:

• Update JsonWebToken - extract and expose the method that reads the header/payload property values from the reader so it can be overridden in children classes to add any extra own logic. See issues #2581, #2583, and #2495 for details.

Bug Fixes:

• JWE header algorithm is now compliant to IANA document. See issue #2089 for details.

Performance Improvements:

• Reduce the number of internal array allocations that need to happen for each claim set, see PR #2596.

Fundamentals:

• Add an AOT compatibility check on each PR to ensure only AOT compatible code is checked-in. See PR #2598.
• Update perl scrip for OneBranch build. See PR #2602.
• Add langversion 12 to benchmark tests. See PR #2601.
• Removed unused build.cmd file. See PR #2605.

... (truncated)

Changelog

Sourced from Microsoft.IdentityModel.Tokens's changelog.

7.7.1

Bug Fix

• Re-add JsonSerializerPrimitives.TryAllStringClaimsAsDateTime which was removed as it is in an internal class, but due to InternalsVisibleTo can lead to a MissingMethodException if IdentityModel versions are not aligned. See PR #2734 for details.

7.7.0

CVE package updates

CVE-2024-30105

• A derived ClaimsIdentity where claim retrieval is case-sensitive. The current ClaimsIdentity, in .NET, retrieves claims in a case-insensitive manner which is different than querying the underlying SecurityToken. The new CaseSensitiveClaimsIdentity class provides consistent retrieval logic with SecurityToken. Opt in to the new behavior via an AppContext switch. See PR #2715 for details.

7.6.3

Bug Fix

• Remove dependency on AadIssuerValidator.GetTenantIdFromToken in ValidateIssuerSigningKey, to only consider the tid. An AppContext switch enables fallbacking to the previous behavior, which should not be needed. See PR #2680 for details.

7.6.2

Bug Fix:

• Revert reduced allocations in AadIssuerValidator by not using string.Replace where appropriate due to an index out-of-range error.

7.6.1

New Features:

• Add missing metadata parameters to OpenIdConnectConfiguration. See issue #2498 for details.

Bug Fixes:

• Fix over-reporting of IDX14100. See issue #2058 and PR #2618 for details.
• JwtRegisteredClaimNames now contains previously missing Standard OpenIdConnect claims. See issue #1598 for details.

Performance Improvements:

• Reduced allocations in AadIssuerValidator by not using string.Replace where appropriate. See issue #2595 and PR #2597 for more details.
• No longer for every string claim, calling DateTime.TryParse on each value, whether it is expected to be a DateTime or not. See issue #2615 for details.

7.6.0

New Features:

• Update JsonWebToken - extract and expose the method that reads the header/payload property values from the reader so it can be overridden in children classes to add any extra own logic. See issues #2581, #2583, and #2495 for details.

Bug Fixes:

• JWE header algorithm is now compliant to IANA document. See issue #2089 for details.

Performance Improvements:

• Reduce the number of internal array allocations that need to happen for each claim set, see PR #2596.

Fundamentals:

• Add an AOT compatibility check on each PR to ensure only AOT compatible code is checked-in. See PR #2598.
• Update perl scrip for OneBranch build. See PR #2602.
• Add langversion 12 to benchmark tests. See PR #2601.

... (truncated)

Commits

• aea9c71 changelog for 7.7.1 (#2736)
• e65fcb2 Add JsonSerializerPrimitives.TryAllStringClaimsAsDateTime to 7x. (#2734)
• 74d8a82 Fix static tests (#2732)
• a75d614 Cherry pick Cache context switches (#2724) to 7x (#2726)
• 8405847 System.Text.Json CVE fix (#2721)
• 58f1f7f 7.7.0 change log (#2714)
• 6d6a22e Add CaseSensitiveClaimsIdentity to 7x (#2715)
• eaeb748 Remove dependency on AadIssuerValidator.GetTenantIdFromToken in ValidateIssue...
• a93b7f6 Update CHANGELOG.md (#2654)
• 4d3e5b9 Revert PR#2597 (#2650)
• Additional commits viewable in compare view

Updates Microsoft.AspNetCore.Mvc.Testing from 8.0.7 to 8.0.8

Release notes

Sourced from Microsoft.AspNetCore.Mvc.Testing's releases.

.NET 8.0.8

Release

Commits

• 954f61d Merged PR 41234: Update token timeout
• b4bd413 Merged PR 41232: Regenerate SAS before installers
• a9a9679 Merged PR 41208: Updated ci.yml - name artifacts with attempt number where pu...
• d7cd46e Updated ci-public.yml - add job attempt number to log and test results artifa...
• 502dd8f Updated ci.yml - name artifacts with attempt number where publish on error is...
• 02af77e Merge commit '8627de289bea83ff85b0e54c4a085680b01668f8'
• 8627de2 Update dependencies from https://github.com/dotnet/source-build-reference-pac...
• 2ccd323 Merged PR 41169: [internal/release/8.0] Update dependencies from dnceng/inter...
• c1bbdb5 Update dependencies from https://dev.azure.com/dnceng/internal/_git/dotnet-ef...
• ad6f7a6 Merge commit 'b1fbaaab3f1c9fe17d22eda6c0425c2f2aa89674'
• Additional commits viewable in compare view

Updates Microsoft.Extensions.Configuration.Binder from 8.0.1 to 8.0.2

Release notes

Sourced from Microsoft.Extensions.Configuration.Binder's releases.

.NET 8.0.2

Release

Commits

• 1381d5e Merge in 'release/8.0' changes
• c987e4f [release/8.0] Fix Options Source Gen RangeAttribute Thread Safety (#97110)
• 441c91d Merge in 'release/8.0' changes
• c93800e Merge pull request #97065 from carlossanlop/release/8.0-staging
• c2d2bb3 Merge branch 'release/8.0' into release/8.0-staging
• 6d35e39 [release/8.0-staging] UInt64.CreateSaturating<Int128> truncates instead of sa...
• 96b0a55 [release/8.0-staging] macOS: Set certificate as a dependency of private key h...
• 85c2772 [release/8.0] Fix server-side OCSP stapling on Linux (#96838)
• 683da71 [release/8.0-staging] Gen0 segment should always be reported as Gen0 for DacH...
• f9d0a7b [release/8.0-staging] Fix Crossgen2 PDB generation (again) (#96566)
• Additional commits viewable in compare view

Updates Microsoft.Extensions.Logging.Abstractions from 8.0.0 to 8.0.1

Release notes

Sourced from Microsoft.Extensions.Logging.Abstractions's releases.

.NET 8.0.1

Release

Commits

• bf5e279 Merge in 'release/8.0' changes
• a6e4834 [release/8.0] Free the tls memory on thread termination (#95439)
• eddf880 Merge in 'release/8.0' changes
• 89a2364 [release/8.0] Downgrade ServicingVersion for Microsoft.Extensions.Options to ...
• d682195 Merge in 'release/8.0' changes
• 8557ef2 Merge pull request #95148 from carlossanlop/release/8.0-staging
• aaa4b27 Merge pull request #95082 from dotnet-maestro-bot/merge/release/8.0-to-releas...
• 72e5ae9 X509Chain.Build should throw when an internal error occurs
• a20ee6f [release/8.0-staging] Fix JsonArray.Add and ReplaceWith regressions. (#94882)
• 4fc3df2 Fix incremental servicing condition (#95119)
• Additional commits viewable in compare view

Updates Microsoft.EntityFrameworkCore from 8.0.7 to 8.0.8

Release notes

Sourced from Microsoft.EntityFrameworkCore's releases.

.NET 8.0.8

Release

Commits

• 90d0799 Merged PR 41167: Temporarily work around '/' in dSAS
• e7f0165 Merged PR 41160: Temporarily work around '/' in dSAS
• ecfccf0 Merged PR 41109: [internal/release/8.0] Update dependencies from dnceng/inter...
• 5efec91 Update dependencies from https://dev.azure.com/dnceng/internal/_git/dotnet-ru...
• 3b2db3b Merge commit '65e7cb610848962a63829e41b89931754f8069b0'
• 65e7cb6 Up SAS timeout to 3 hours (#34229)
• f2ed96b Merge commit '8b6c0ded38700b2cc220131ab81677d81530054f'
• 8b6c0de Enable internal runtime downloads via dSAS (#34217)
• 4ce4850 Merge commit '38a1ea20451f0891ad576a879a37ac67dd96a380'
• 38a1ea2 Update dependencies from https://github.com/dotnet/arcade build 20240710.5 (#...
• Additional commits viewable in compare view

Updates Microsoft.EntityFrameworkCore.InMemory from 8.0.7 to 8.0.8

Release notes

Sourced from Microsoft.EntityFrameworkCore.InMemory's releases.

.NET 8.0.8

Release

Commits

• 90d0799 Merged PR 41167: Temporarily work around '/' in dSAS
• e7f0165 Merged PR 41160: Temporarily work around '/' in dSAS
• ecfccf0 Merged PR 41109: [internal/release/8.0] Update dependencies from dnceng/inter...
• 5efec91 Update dependencies from https://dev.azure.com/dnceng/internal/_git/dotnet-ru...
• 3b2db3b Merge commit '65e7cb610848962a63829e41b89931754f8069b0'
• 65e7cb6 Up SAS timeout to 3 hours (#34229)
• f2ed96b Merge commit '8b6c0ded38700b2cc220131ab81677d81530054f'
• 8b6c0de Enable internal runtime downloads via dSAS (#34217)
• 4ce4850 Merge commit '38a1ea20451f0891ad576a879a37ac67dd96a380'
• 38a1ea2 Update dependencies from https://github.com/dotnet/arcade build 20240710.5 (#...
• Additional commits viewable in compare view

Updates Microsoft.EntityFrameworkCore from 8.0.7 to 8.0.8

Release notes

Sourced from Microsoft.EntityFrameworkCore's releases.

.NET 8.0.8

Release

Commits

• 90d0799 Merged PR 41167: Temporarily work around '/' in dSAS
• e7f0165 Merged PR 41160: Temporarily work around '/' in dSAS
• ecfccf0 Merged PR 41109: [internal/release/8.0] Update dependencies from dnceng/inter...
• 5efec91 Update dependencies from https://dev.azure.com/dnceng/internal/_git/dotnet-ru...
• 3b2db3b Merge commit '65e7cb610848962a63829e41b89931754f8069b0'
• 65e7cb6 Up SAS timeout to 3 hours (#34229)
• f2ed96b Merge commit '8b6c0ded38700b2cc220131ab81677d81530054f'
• 8b6c0de Enable internal runtime downloads via dSAS (#34217)
• 4ce4850 Merge commit '38a1ea20451f0891ad576a879a37ac67dd96a380'
• 38a1ea2 Update dependencies from https://github.com/dotnet/arcade build 20240710.5 (#...
• Additional commits viewable in compare view

Updates Microsoft.EntityFrameworkCore.Design from 8.0.7 to 8.0.8

Release notes

Sourced from Microsoft.EntityFrameworkCore.Design's releases.

.NET 8.0.8

Release

Commits

• 90d0799 Merged PR 41167: Temporarily work around '/' in dSAS
• e7f0165 Merged PR 41160: Temporarily work around '/' in dSAS
• ecfccf0 Merged PR 41109: [internal/release/8.0] Update dependencies from dnceng/inter...
• 5efec91 Update dependencies from https://dev.azure.com/dnceng/internal/_git/dotnet-ru...
• 3b2db3b Merge commit '65e7cb610848962a63829e41b89931754f8069b0'
• 65e7cb6 Up SAS timeout to 3 hours (#34229)
• f2ed96b Merge commit '8b6c0ded38700b2cc220131ab81677d81530054f'
• 8b6c0de Enable internal runtime downloads via dSAS (#34217)
• 4ce4850 Merge commit '38a1ea20451f0891ad576a879a37ac67dd96a380'
• 38a1ea2 Update dependencies from https://github.com/dotnet/arcade build 20240710.5 (#...
• Additional commits viewable in compare view

Updates Microsoft.EntityFrameworkCore.Relational from 8.0.7 to 8.0.8

Release notes

Sourced from Microsoft.EntityFrameworkCore.Relational's releases.

.NET 8.0.8

Release

Commits

• 90d0799 Merged PR 41167: Temporarily work around '/' in dSAS
• e7f0165 Merged PR 41160: Temporarily work around '/' in dSAS
• ecfccf0 Merged PR 41109: [internal/release/8.0] Update dependencies from dnceng/inter...
• 5efec91 Update dependencies from https://dev.azure.com/dnceng/internal/_git/dotnet-ru...
• 3b2db3b Merge commit '65e7cb610848962a63829e41b89931754f8069b0'
• 65e7cb6 Up SAS timeout to 3 hours (#34229)
• f2ed96b Merge commit '8b6c0ded38700b2cc220131ab81677d81530054f'
• 8b6c0de Enable internal runtime downloads via dSAS (#34217)
• 4ce4850 Merge commit '38a1ea20451f0891ad576a879a37ac67dd96a380'
• 38a1ea2 Update dependencies from https://github.com/dotnet/arcade build 20240710.5 (#...
• Additional commits viewable in compare view

Updates Microsoft.EntityFrameworkCore from 8.0.7 to 8.0.8

Release notes

Sourced from Microsoft.EntityFrameworkCore's releases.

.NET 8.0.8

Release

Commits

• 90d0799 Merged PR 41167: Temporarily work around '/' in dSAS
• e7f0165 Merged PR 41160: Temporarily work around '/' in dSAS
• ecfccf0 Merged PR 41109: [internal/release/8.0] Update dependencies from dnceng/inter...
• 5efec91 Update dependencies from https://dev.azure.com/dnceng/internal/_git/dotnet-ru...
• 3b2db3b Merge commit '65e7cb610848962a63829e41b89931754f8069b0'
• 65e7cb6 Up SAS timeout to 3 hours (#34229)
• f2ed96b Merge commit '8b6c0ded38700b2cc220131ab81677d81530054f'
• 8b6c0de Enable internal runtime downloads via dSAS (#34217)
• 4ce4850 Merge commit '38a1ea20451f0891ad576a879a37ac67dd96a380'
• 38a1ea2 Update dependencies from https://github.com/dotnet/arcade build 20240710.5 (#...
• Additional commits viewable in compare view

Updates Microsoft.EntityFrameworkCore.Relational from 8.0.7 to 8.0.8

Release notes

Sourced from Microsoft.EntityFrameworkCore.Relational's releases.

.NET 8.0.8

Release

Commits

• 90d0799 Merged PR 41167: Temporarily work around '/' in dSAS
• e7f0165 Merged PR 41160: Temporarily work around '/' in dSAS
• ecfccf0 Merged PR 41109: [internal/release/8.0] Update dependencies from dnceng/inter...
• 5efec91 Update dependencies from https://dev.azure.com/dnceng/internal/_git/dotnet-ru...
• 3b2db3b Merge commit '65e7cb610848962a63829e41b89931754f8069b0'
• 65e7cb6 Up SAS timeout to 3 hours (#34229)
• f2ed96b Merge commit '8b6c0ded38700b2cc220131ab81677d81530054f'
• 8b6c0de Enable internal runtime downloads via dSAS (#34217)
• 4ce4850 Merge commit '38a1ea20451f0891ad576a879a37ac67dd96a380'
• 38a1ea2 Update dependencies from https://github.com/dotnet/arcade build 20240710.5 (#...
• Additional commits viewable in compare view

Updates Microsoft.EntityFrameworkCore from 8.0.7 to 8.0.8

Release notes

Sourced from Microsoft.EntityFrameworkCore's releases.

.NET 8.0.8

Release

Commits

• 90d0799 Merged PR 41167: Temporarily work around '/' in dSAS
• e7f0165 Merged PR 41160: Temporarily work around '/' in dSAS
• ecfccf0 Merged PR 41109: [internal/release/8.0] Update dependencies from dnceng/inter...
• 5efec91 Update dependencies from https://dev.azure.com/dnceng/internal/_git/dotnet-ru...
• 3b2db3b Merge commit '65e7cb610848962a63829e41b89931754f8069b0'
• 65e7cb6 Up SAS timeout to 3 hours (#34229)
• f2ed96b Merge commit '8b6c0ded38700b2cc220131ab81677d81530054f'
• 8b6c0de Enable internal runtime downloads via dSAS (#34217)
• 4ce4850 Merge commit '38a1ea20451f0891ad576a879a37ac67dd96a380'
• 38a1ea2 Update dependencies from https://github.com/dotnet/arcade build 20240710.5 (#...
• Additional commits viewable in compare view

Updates Microsoft.VisualStudio.Azure.Containers.Tools.Targets from 1.19.6 to 1.21.0

Updates Microsoft.CodeAnalysis.CSharp.Scripting from 4.5.0 to 4.11.0

Release notes

Sourced from Microsoft.CodeAnalysis.CSharp.Scripting's releases.

.NET 6.0.1

Release

.NET 5.0.4

Release

.NET 5.0.2

Release Notes Install Instructions

Repos

• Core

Changelog

Sourced from Microsoft.CodeAnalysis.CSharp.Scripting's changelog.

API Breaking Changes

Version 1.1.0

Removed VisualBasicCommandLineParser.ctor

During a toolset update we noticed the constructor on VisualBasicCommandLineParser was public. This in turn made many of the protected members of CommandLineParser a part of the API surface as it gave external customers an inheritance path.

It was never the intent for these members to be a part of the supported API surface. Creation of the parsers is meant to be done via the Default singleton properties. There seems to be little risk that we broke any customers here and hence we decided to remove this API.

PR: dotnet/roslyn#4169

Changed Simplifier methods to throw ArgumentNullExceptions

Changed Simplifier.ReduceAsync, Simplifier.ExpandAsync, and Simplifier.Expand methods to throw ArgumentNullExceptions if any non-optional, nullable arguments are passed in. Previously the user would get a NullReferenceException for synchronous methods and an AggregateException containing a NullReferenceException for asynchronous methods.

PR: dotnet/roslyn#5144

Version 1.3.0

Treat a method marked with both public and private flags as private

The scenario is loading an assembly where some methods, fields or nested types have accessibility flags set to 7 (all three bits set), which mean public AND private. After the fix, such flags are loaded to mean private. The compat change is we’re trading a compile-time success and runtime failure (native compiler) against a compile-time error (restoring the behavior of v1.2).

Details below:

• The native compiler successfully compiles the method and field case (those only yield runtime error System.TypeLoadException: Invalid Field Access Flags) and reported an accessibility error on the nested type.
• The 1.2 compiler generated errors:

error BC30390: 'C.Private Overloads Sub M()' is not accessible in this context because it is 'Private'.
error BC30389: 'C.F' is not accessible in this context because it is 'Private'.
error BC30389: 'C.C2' is not accessible in this context because it is 'Protected Friend'.
error BC30390: 'C2.Private Overloads Sub M2()' is not accessible in this context because it is 'Private'.

• The 1.3 compiler crashes.
• After fix, the same errors as 1.2 are generated again.

PR: dotnet/roslyn#11547

Don't emit bad DateTimeConstant, and load bad BadTimeConstant as default value instead

The change affects compatibility in two ways:

• When loading an invalid DateTimeConstant(-1), the compiler will use default(DateTime) instead, whereas the native compiler would produce code that fails to execute.
• DateTimeConstant(-1) will still count when we check that you don’t specify two default values. The compiler will produce an error, instead of succeeding (and producing IL with two attributes).

PR: dotnet/roslyn#11536

Version 4.1.0

... (truncated)

Commits

• See full diff in compare view

Updates Microsoft.AspNetCore.Authentication.JwtBearer from 8.0.3 to 8.0.8

Release notes

Sourced from Microsoft.AspNetCore.Authentication.JwtBearer's releases.

.NET 8.0.8

Release

.NET 8.0.7

Release

.NET 8.0.6

Release

.NET 8.0.5

Release

What's Changed

• [release/8.0] Update dependencies from dotnet/source-build-externals by @​dotnet-maestro in dotnet/aspnetcore#54744
• Update branding to 8.0.5 by @​vseanreesermsft in dotnet/aspnetcore#54907
• [release/8.0] Convert to 1ES templates by @​RussKie in dotnet/aspnetcore#54660
• Increase logs and delays in CanLaunchPhotinoWebViewAndClickButton by @​Eilon in dotnet/aspnetcore#54608
• [release/8.0] (deps): Bump src/submodules/googletest from 31993df to 77afe8e by @​dependabot in dotnet/aspnetcore#54872
• [release/8.0] Reduce helix-matrix timeout to 5 hours by @​github-actions in dotnet/aspnetcore#54778
• [release/8.0] Preserve RemoteAuthenticationContext during trimming if used in JS interop by @​halter73 in dotnet/aspnetcore#54655
• [release/8.0] Improve usage of Type.GetType when activating types in data protection by @​github-actions in dotnet/aspnetcore#54762
• [release/8.0] Fix route analyzer performance with highly concatenated strings by @​github-actions in dotnet/aspnetcore#54763
• [release/8.0] Suppress .ps1 SDL errors by @​wtgodbe in

[sonarcloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarCloud