Bump Azure.Identity and 4 others

[dependabot]

Pinned Azure.Identity at 1.18.0.

Release notes

Sourced from Azure.Identity's releases.

1.18.0

1.18.0 (2026-02-25)

Features Added

• Added experimental Microsoft.Extensions.Configuration and Microsoft.Extensions.DependencyInjection integration for Azure SDK clients. For details, see the Configuration and Dependency Injection documentation.

• The WorkloadIdentityCredentialOptions.IsAzureProxyEnabled property, which enables Azure Kubernetes token proxy mode, is only available in beta releases of this package.

• AzureDeveloperCliCredential now parses JSON error output from azd auth token to extract clean error messages instead of including raw JSON in exceptions. Error messages like {"type":"consoleMessage","data":{"message":"ERROR: fetching token: ..."}} are now displayed as ERROR: fetching token: ....

1.18.0-beta.3

1.18.0-beta.3 (2026-02-20)

Breaking Changes

• Renamed WorkloadIdentityCredentialOptions.IsAzureKubernetesTokenProxyEnabled to IsAzureProxyEnabled to follow .NET naming conventions for boolean properties.

Bugs Fixed

• Fixed a NullReferenceException that occurred during X509Chain validation on Linux when using the Identity Bindings feature.

• Disabled MSAL's internal retry logic for ConfidentialClientApplication and PublicClientApplication to prevent double retries when combined with Azure SDK's retry policy. Only the configured Azure SDK retry policy is applied, avoiding unexpected additional retry attempts.

1.15.0

1.15.0 (2026-02-02)

Features Added

• Upgraded api-version to 2025-05-01.

Commits viewable in compare view.

Updated Azure.Identity from 1.17.1 to 1.18.0.

Release notes

Sourced from Azure.Identity's releases.

1.18.0

1.18.0 (2026-02-25)

Features Added

• Added experimental Microsoft.Extensions.Configuration and Microsoft.Extensions.DependencyInjection integration for Azure SDK clients. For details, see the Configuration and Dependency Injection documentation.

• The WorkloadIdentityCredentialOptions.IsAzureProxyEnabled property, which enables Azure Kubernetes token proxy mode, is only available in beta releases of this package.

• AzureDeveloperCliCredential now parses JSON error output from azd auth token to extract clean error messages instead of including raw JSON in exceptions. Error messages like {"type":"consoleMessage","data":{"message":"ERROR: fetching token: ..."}} are now displayed as ERROR: fetching token: ....

1.18.0-beta.3

1.18.0-beta.3 (2026-02-20)

Breaking Changes

• Renamed WorkloadIdentityCredentialOptions.IsAzureKubernetesTokenProxyEnabled to IsAzureProxyEnabled to follow .NET naming conventions for boolean properties.

Bugs Fixed

• Fixed a NullReferenceException that occurred during X509Chain validation on Linux when using the Identity Bindings feature.

• Disabled MSAL's internal retry logic for ConfidentialClientApplication and PublicClientApplication to prevent double retries when combined with Azure SDK's retry policy. Only the configured Azure SDK retry policy is applied, avoiding unexpected additional retry attempts.

Commits viewable in compare view.

Updated Microsoft.Data.SqlClient from 5.2.2 to 6.1.4.

Release notes

Sourced from Microsoft.Data.SqlClient's releases.

6.1.4

This update brings the following changes since the 6.1.3 release:

Fixed

• Fixed NullReferenceException issue with SqlDataAdapter when processing batch scenarios where certain SQL RPC calls may not include system parameters.
  (#​3877)
• Fixed connection pooling issue where extra connection deactivation was causing active connection counts to go negative.
  (#​3776)

Added

AppContext Switch for enabling MultiSubnetFailover

What Changed:

• Added new AppContext switch Switch.Microsoft.Data.SqlClient.EnableMultiSubnetFailoverByDefault to set MultiSubnetFailover=true by default in connection string.
  (#​3851)

Who Benefits:

• Applications that need MultiSubnetFailover enabled globally without modifying connection strings.

Impact:

• Applications can now enable MultiSubnetFailover globally using one of the following methods:

// In application code
AppContext.SetSwitch("Switch.Microsoft.Data.SqlClient.EnableMultiSubnetFailoverByDefault", true);

// In runtimeconfig.json
{
  "configProperties": {
    "Switch.Microsoft.Data.SqlClient.EnableMultiSubnetFailoverByDefault": true
  }
}

<!-- In App.Config -->
<runtime>
  <AppContextSwitchOverrides value="Switch.Microsoft.Data.SqlClient.EnableMultiSubnetFailoverByDefault=true" />
</runtime>

Changed

• Optimized SqlStatistics execution timing by using Environment.TickCount instead of more expensive timing mechanisms.
  ... (truncated)

6.1.3

This update includes the following changes since the 6.1.2 release:

Added

App Context Switch for Ignoring Server-Provided Failover Partner

What Changed:

• A new app context switch Switch.Microsoft.Data.SqlClient.IgnoreServerProvidedFailoverPartner was introduced to let the client ignore server-provided failover partner info in Basic Availability Groups (BAGs). When the switch is enabled, only the failover partner specified in the connection string is used; server-supplied partner values are skipped. This context switch was introduced in PR #​3702.

Who Benefits:

• Applications connecting to SQL Server BAGs using TCP and custom ports, especially where the server's provided partner name lacks the protocol, host, or port. This avoids connection failures when the server-provided partner is incompatible or incomplete.
• Teams who manage availability groups and rely on client-side control of failover behavior in heterogeneous networking environments.

Impact:

• If your environment might be affected (i.e., you operate a BAG with custom ports, or have experienced failures after failover), you can enable the new switch in your application:

AppContext.SetSwitch("Switch.Microsoft.Data.SqlClient.IgnoreServerProvidedFailoverPartner", true);

• Then, ensure your connection string includes your preferred failover partner (with correct tcp:host,port) so that the client uses that instead of the server's suggestion.
• Without enabling this, by default, the client continues to prefer the server-provided partner, maintaining backwards compatibility.

Fixed

• Fixed an issue to ensure reliable metrics initialization during startup, preventing missed telemetry when EventSource is enabled early. (#​3718)

Target Platform Support

• .NET Framework 4.6.2+ (Windows ARM64, Windows x86, Windows x64)
• .NET 8.0+ (Windows x86, Windows x64, Windows ARM64, Windows ARM, Linux, macOS)

Dependencies

.NET Framework 4.6.2+

• Azure.Core 1.47.1
• Azure.Identity 1.14.2
• Microsoft.Bcl.Cryptography 8.0.0
• Microsoft.Data.SqlClient.SNI 6.0.2
• Microsoft.Extensions.Caching.Memory 8.0.1
• Microsoft.IdentityModel.JsonWebTokens 7.7.1
• Microsoft.IdentityModel.Protocols.OpenIdConnect 7.7.1
• System.Buffers 4.5.1
• System.Data.Common 4.3.0
• System.Security.Cryptography.Pkcs 8.0.1
• System.Text.Encodings.Web 8.0.0
  ... (truncated)

6.1.2

This update brings the below changes over the previous stable release:

Fixed

• Fixed an issue where initializing PerformanceCounters would throw System.InvalidOperationException #​3629
• Fixed an issue where a Custom SqlClientAuthenticationProvider was being overwritten by default implementation. #​3651
• Fixed a concurrency issue in connection pooling where the number of active connections could be lower than the configured maximum pool size. #​3653

6.1.1

This update includes the following changes since the 6.1.0 release:

Fixed

• Reverted changes related to improving partial packet detection, fixup, and replay functionality. This revert addresses regressions introduced in 6.1.0. (#​3556)
• Applied reference assembly corrections supporting vector, fixed JSON tests, and ensured related tests are enabled. #​3562
• Fixed SqlVector<T>.Null API signature in Reference assembly. #​3521

Changed

• Upgraded Azure.Identity and other dependencies to newer versions. (#​3538) (#​3552)

6.1.0

Release Notes

[!WARNING]
This release version is delisted from NuGet.org and is no longer supported.
It contains critical bugs that make it unsuitable for use.

Stable Release 6.1.0 - 2025-07-25

This update brings the following changes since the 6.0.2 stable release:

Added

Added dedicated SQL Server vector datatype support

What Changed:

• Optimized vector communications between MDS and SQL Server 2025, employing a custom binary format over the TDS protocol. (#​3433, #​3443)
• Reduced processing load compared to existing JSON-based vector support.
• Initial support for 32-bit single-precision floating point vectors.

Who Benefits:

• Applications moving large vector data sets will see beneficial improvements to processing times and memory requirements.
• Vector-specific APIs are ready to support future numeric representations with a consistent look-and-feel.

Impact:

• Reduced transmission and processing times for vector operations versus JSON using SQL Server 2025 preview:
  • Reads: 50x improvement
  • Writes: 3.3x improvement
  • Bulk Copy: 19x improvement
  • (Observed with vector column of max 1998 size, and 10,000 records for each operation.)
• Improved memory footprint due to the elimination of JSON serialization/deserialization and string representation bloat.
• For backwards compatibility with earlier SQL Server Vector implementations, applications may continue to use JSON strings to send/receive vector data, although they will not see any of the performance improvements noted above.

Revived .NET Standard 2.0 target support

What Changed:

• Support for targeting .NET Standard 2.0 has returned. (#​3381)
• Support had previously been removed in the 6.0 release, with the community voicing concerns.

Who Benefits:

• Libraries that depend on MDS may seamlessly target any of the following frameworks:
  • .NET Standard 2.0
  • .NET Framework 4.6.2 and above
  • .NET 8.0
  • .NET 9.0
• Applications should continue to target runtimes.
  ... (truncated)

6.1.0-preview2

Preview Release 6.1.0-preview2.25178.5 - 2025-06-27

This update brings the following changes since the 6.1.0-preview1 release:

Added

Added dedicated SQL Server vector datatype support

What Changed:

• Optimized vector communications between MDS and SQL Server 2025, employing a custom binary format over the TDS protocol. (#​3433, #​3443)
• Reduced processing load compared to existing JSON-based vector support.
• Initial support for 32-bit single-precision floating point vectors.

Who Benefits:

• Applications moving large vector data sets will see beneficial improvements to processing times and memory requirements.
• Vector-specific APIs are ready to support future numeric representations with a consistent look-and-feel.

Impact:

• Reduced transmission and processing times for vector operations versus JSON using SQL Server 2025 preview:
  • Reads: 50x improvement
  • Writes: 3.3x improvement
  • Bulk Copy: 19x improvement
  • (Observed with vector column of max 1998 size, and 10,000 records for each operation.)
• Improved memory footprint due to the elimination of JSON serialization/deserialization and string representation bloat.
• For backwards compatibility with earlier SQL Server Vector implementations, applications may continue to use JSON strings to send/receive vector data, although they will not see any of the performance improvements noted above.

Revived .NET Standard 2.0 target support

What Changed:

• Support for targeting .NET Standard 2.0 has returned. (#​3381)
• Support had previously been removed in the 6.0 release, with the [community voicing concerns] (Microsoft.Data.SqlClient 6.0 and .Net Standard dotnet/SqlClient#3115).

Who Benefits:

• Libraries that depend on MDS may seamlessly target any of the following frameworks:
  • .NET Standard 2.0
  • .NET Framework 4.6.2 and above
  • .NET 8.0
  • .NET 9.0
• Applications should continue to target runtimes.
  • The MDS .NET Standard 2.0 target framework support does not include an actual implementation, and cannot be used with a runtime.
  • An application's build/publish process should always pick the appropriate MDS .NET/.NET Framework runtime implementation.
  • Custom build/publish actions that incorrectly try to deploy the MDS .NET Standard 2.0 reference DLL at runtime are not supported.

Impact:

... (truncated)

6.1.0-preview1

This update brings the following changes over the previous release:

Added

• Added packet multiplexing support to improve large data read performance. #​2714 #​3161 #​3202
• Added support for special casing with Fabric endpoints. #​3084

Fixed

• Fixed distributed transactions to be preserved during pooled connection resets. #​3019.
• Fixed application crash when the Data Source parameter begins with a comma. #​3250.
• Resolved synonym count discrepancies in debug mode. #​3098.
• Addressed warnings for down-level SSL/TLS versions. #​3126.

Changed

• Optimized binary size for AOT. #​3091
• Refined bulk copy operations to handle unmatched column names more effectively. #​3205.
• Enhanced SqlBulkCopy to explicitly identify mismatched column names. #​3183.
• Optimized outgoing SSPI blob handling using IBufferWriter<byte>. #​2452.
• Replaced byte[] with string for SNI to improve efficiency. #​2790.
• Code cleanup to remove SQL 2000 support #​2839, #​3206, #​3217,
• Connection pool design refactor for a modular connection pool design #​3199
• Updated various dependencies #​3229, primarily:
  • System.Text.Encodings.Web to v8.0.0
  • System.Text.Json to v8.0.5
  • Azure.Identity to v1.13.2
  • Microsoft.Identity.Model.Json.Web.Tokens to v7.7.1
  • Microsoft.Identity.Model.Protocols.OpenIdConnect to v7.7.1
• Code merge towards a unified SqlClient project, aligning .NET Framework and .NET Core implementations. (#​2957, #​2963, #​2984, #​2982, #​3023, #​3015, #​2967, #​3164, #​3163, #​3171, #​3182, #​3179, #​3156, #​3213, #​3232, #​3236, #​3231, #​3241, #​3246, #​3247, #​3222, #​3255, #​3254, #​3259, #​3264, #​3256, #​3251, #​3275, #​3277, #​3263, #​3292, #​3208).
• Test improvements include updates to test references, removal of hardcoded certificates, improved stability, and better coverage (#​3041, #​3034, #​3130, #​3128, #​3181, #​3060, #​3184, #​3033, #​3186, #​3025, #​3230, #​3237, #​3059, #​3061).

New Contributors

• @​emmanuel-ferdman made their first contribution in Update DockerLinuxTest/Program.cs reference dotnet/SqlClient#3041
• @​MaceWindu made their first contribution in Fix typo in Update 6.0.0-preview1.md dotnet/SqlClient#3134
• @​JNjenga made their first contribution in SqlBulkCopy: Explicitly state column name that mismatches(#3170) dotnet/SqlClient#3183
• @​Midhunnnk made their first contribution in Fix crash when Data Source starts with a comma dotnet/SqlClient#3250

6.0.5

[Stable release 6.0.5] - 2026-01-15

This update brings the below changes over the previous stable release:

Fixed

• Fixed NullReferenceException issue with SqlDataAdapter when processing batch scenarios where certain SQL RPC calls may not include system parameters.
  (#​3878)

Added

What Changed:

• Added new AppContext switch Switch.Microsoft.Data.SqlClient.EnableMultiSubnetFailoverByDefault to set MultiSubnetFailover=true by default in connection string.
  (#​3852)

Who Benefits:

• Applications that need MultiSubnetFailover enabled globally without modifying connection strings.

Impact:

• Applications can now enable MultiSubnetFailover globally using one of the following methods:

// In application code
AppContext.SetSwitch("Switch.Microsoft.Data.SqlClient.EnableMultiSubnetFailoverByDefault", true);

// In runtimeconfig.json
{
  "configProperties": {
    "Switch.Microsoft.Data.SqlClient.EnableMultiSubnetFailoverByDefault": true
  }
}

<!-- In App.Config -->
<runtime>
  <AppContextSwitchOverrides value="Switch.Microsoft.Data.SqlClient.EnableMultiSubnetFailoverByDefault=true" />
</runtime>

Changed

• Updated dependencies (#​3840):
  • .NET Framework 4.6.2:

... (truncated)

6.0.4

This update brings the below changes over the 6.0.3 release:

Added

App Context Switch for Ignoring Server-Provided Failover Partner

What Changed:

• A new app context switch Switch.Microsoft.Data.SqlClient.IgnoreServerProvidedFailoverPartner was introduced to let the client ignore server-provided failover partner info in Basic Availability Groups (BAGs). When the switch is enabled, only the failover partner specified in the connection string is used; server-supplied partner values are skipped. This context switch was introduced in PR #​3703.

Who Benefits:

• Applications connecting to SQL Server BAGs using TCP and custom ports, especially where the server's provided partner name lacks the protocol, host, or port. This avoids connection failures when the server-provided partner is incompatible or incomplete.
• Teams who manage availability groups and rely on client-side control of failover behavior in heterogeneous networking environments.

Impact:

• If your environment might be affected (i.e., you operate a BAG with custom ports, or have experienced failures after failover), you can enable the new switch in your application:

AppContext.SetSwitch("Switch.Microsoft.Data.SqlClient.IgnoreServerProvidedFailoverPartner", true);

• Then, ensure your connection string includes your preferred failover partner (with correct tcp:host,port) so that the client uses that instead of the server's suggestion.
• Without enabling this, by default, the client continues to prefer the server-provided partner, maintaining backwards compatibility.

Target Platform Support

• .NET Framework 4.6.2+ (Windows ARM64, Windows x64, Windows x86)
• .NET 8.0+ (Linux, macOS, Windows ARM64, Windows x64, Windows x86)

Dependencies

.NET Framework

• Azure.Identity 1.14.2
• Microsoft.Bcl.Cryptography 8.0.0
• Microsoft.Data.SqlClient.SNI 6.0.2
• Microsoft.Extensions.Caching.Memory 8.0.1
• Microsoft.IdentityModel.JsonWebTokens 7.5.0
• Microsoft.IdentityModel.Protocols.OpenIdConnect 7.5.0
• System.Buffers 4.5.1
• System.Security.Cryptography.Pkcs 8.0.1
• System.Text.Encodings.Web 8.0.0
• System.Text.Json 8.0.5
• System.Data.Common 4.3.0

.NET 8

• Azure.Identity 1.14.2
  ... (truncated)

6.0.3

This update brings the below changes over the previous stable release:

Fixed

• Fixed an issue where a Custom SqlClientAuthenticationProvider was being overwritten by default implementation. #​3652
• Fixed a concurrency issue in connection pooling where the number of active connections could be lower than the configured maximum pool size. #​3654

Changed

• Updated MSAL usage as per code compliance requirements #​3360
• Updated SqlDecimal implementation to improve code compliance #​3466
• Updated Azure.Identity and related dependencies #​3553

6.0.2

This update brings the below changes over the previous release:

Fixed

• Fixed possible NullPointerException during socket receive #​3283
• Fixed reference assembly definitions for SqlJson APIs #​3169
• Fixed an error reading the output parameter of type JSON while executing stored procedure #​3173

Changed

• Updated the below dependencies:
  • Updated Microsoft.Bcl.Cryptography from 9.0.0 to 9.0.4 for .NET 9 targeted dll. #​3281
  • Updated Microsoft.Extensions.Caching.Memory from 9.0.0 to 9.0.4 for .NET 9 targeted dll. #​3281
  • Updated System.Configuration.ConfigurationManager from 9.0.0 to 9.0.4 for .NET 9 targeted dll. #​3281
  • Updated System.Security.Cryptography.Pkcs from 9.0.0 to 9.0.4 for .NET 9 targeted dll. #​3281

6.0.1

Released to NuGet.org on 2025-01-23

Breaking Changes

• Removed support for .NET Standard. #​2386
• Removed support for .NET 6 #​2927
• Removed UWP (UAP) references. #​2483
• Removed SQL 2000 client-side debugging support for .NET Framework #​2981, #​2940

Added

JSON Support

JSON data type support is now available in Microsoft.Data.SqlClient v6.0. This release introduces SqlJson type available as an extension to System.Data.SqlDbTypes:

using System;
using System.Data.SqlTypes;
using System.Text.Json;

namespace Microsoft.Data.SqlTypes
{
    /// <summary>
    /// Represents the JSON data type in SQL Server.
    /// </summary>
    public class SqlJson : INullable
    {
        /// <summary>
        /// Parameterless constructor. Initializes a new instance of the SqlJson class which 
        /// represents a null JSON value.
        /// </summary>
        public SqlJson() { }

        /// <summary>
        /// Takes a <see cref="string"/> as input and initializes a new instance of the SqlJson class.
        /// </summary>
        /// <param name="jsonString"></param>
        public SqlJson(string jsonString) { }

        /// <summary>
        /// Takes a <see cref="JsonDocument"/> as input and initializes a new instance of the SqlJson class.
        /// </summary>
        /// <param name="jsonDoc"></param>
        public SqlJson(JsonDocument jsonDoc) { }

        /// <inheritdoc/>
        public bool IsNull => throw null;

        /// <summary>
        /// Represents a null instance of the <see cref="SqlJson"/> type.
 ... (truncated)

## 6.0.0-preview3.24332.3

## Breaking Changes
- Dropped support for .NET 6 [#​2927](https://github.com/dotnet/SqlClient/pull/2927)
- Removed SQL 2000 client-side debugging support for .NET Framework [#​2981](https://github.com/dotnet/SqlClient/pull/2981), [#​2940](https://github.com/dotnet/SqlClient/pull/2940)

### Added
- Enabled NuGet package auditing via NuGet.org audit source [#​3024](https://github.com/dotnet/SqlClient/pull/3024)
- Added support for .NET 9 [#​2946](https://github.com/dotnet/SqlClient/pull/2946)
- Added dependency on System.Security.Cryptography.Pkcs:9.0.0 to address [SYSLIB0057](https://learn.microsoft.com/en-us/dotnet/fundamentals/syslib-diagnostics/syslib0057)[#​2946](https://github.com/dotnet/SqlClient/pull/2946)
- Added dependency on Microsoft.Bcl.Cryptography:9.0.0 [#​2946](https://github.com/dotnet/SqlClient/pull/2946)
- Added missing SqlCommand_BeginExecuteReader code sample [#​3009](https://github.com/dotnet/SqlClient/pull/3009)
- Added support for SqlConnectionOverrides in OpenAsync() API [#​2433](https://github.com/dotnet/SqlClient/pull/2433)
- Added localization in Czech, Polish, and Turkish [#​2987](https://github.com/dotnet/SqlClient/pull/2987)

### Fixed
- Reverted default value of UseMinimumLoginTimeout context switch to 'true' [#​2419](https://github.com/dotnet/SqlClient/pull/2419)
- Added missing DynamicallyAccessedMembers attributes in .NET Runtime reference assemblies. [#​2946](https://github.com/dotnet/SqlClient/pull/2946)
- Synchronized dependencies of Reference Assemblies with Runtime assemblies [#​2878](https://github.com/dotnet/SqlClient/pull/2878)
- Fixed lazy initialization of the _SqlMetaData hidden column map for .NET Framework [#​2964](https://github.com/dotnet/SqlClient/pull/2964)

### Changed
- Updated Microsoft.Extensions.Caching.Memory to 9.0.0 for all frameworks [#​2946](https://github.com/dotnet/SqlClient/pull/2946)
- Updated System.Configuration.ConfigurationManager to 9.0.0 [#​2946](https://github.com/dotnet/SqlClient/pull/2946)
- Updated docs to use absolute links [#​2949](https://github.com/dotnet/SqlClient/pull/2949)
- Removed System.Text.Json dependency from .NET 8 [#​2930](https://github.com/dotnet/SqlClient/pull/2930)

### Contributors

Thanks to the following public contributors. Their efforts toward this project are very much appreciated.

- @​MichelZ
- @​EamonHetherton
- @​edwardneal
- @​deadlydog
- @​mus65

For detailed release notes, refer to [6.0.0-preview3.md](https://github.com/dotnet/SqlClient/blob/main/release-notes/6.0/6.0.0-preview3.md)

## 6.0.0-preview2.24304.8

### Added

- Added a dependency on System.Text.Json 8.0.5 for .NET 8+ and 6.0.10 for other versions [#​2921](https://github.com/dotnet/SqlClient/pull/2921)
- Added support for [JSON native datatype](https://learn.microsoft.com/en-us/sql/t-sql/data-types/json-data-type?view=azuresqldb-current&preserve-view=true) currently in [Public preview in SQL Server](https://learn.microsoft.com/azure/azure-sql/database/doc-changes-updates-release-notes-whats-new?view=azuresql).  [#​2916](https://github.com/dotnet/SqlClient/pull/2916), [#​2892](https://github.com/dotnet/SqlClient/pull/2892), [#​2891](https://github.com/dotnet/SqlClient/pull/2891), [#​2880](https://github.com/dotnet/SqlClient/pull/2880), [#​2882](https://github.com/dotnet/SqlClient/pull/2882), [#​2829](https://github.com/dotnet/SqlClient/pull/2829), [#​2830](https://github.com/dotnet/SqlClient/pull/2830)
- Added readme to nuget package [#​2826](https://github.com/dotnet/SqlClient/pull/2826)

### Fixed

- Fixed scale serialization when explicitly set to 0 [#​2411](https://github.com/dotnet/SqlClient/pull/2411)
- Fixed issue blocking GetSchema commands from being enrolled into the current transaction [#​2876](https://github.com/dotnet/SqlClient/pull/2876)
- Adjusted retry logic to allow errors with negative numbers to be considered transient [#​2896](https://github.com/dotnet/SqlClient/pull/2896)
- Fixed string formatting in OutOfMemory exceptions [#​2797](https://github.com/dotnet/SqlClient/pull/2797)
- Increased routing attempts to 10 in netcore for LoginNoFailover and added routing support to LoginWithFailover to standardize routing behavior between netcore and netfx [#​2873](https://github.com/dotnet/SqlClient/pull/2873)
- Restructured documentation into XML format so that it displays correctly in visual studio [#​2836](https://github.com/dotnet/SqlClient/pull/2836), [#​2822](https://github.com/dotnet/SqlClient/pull/2822), [#​2834](https://github.com/dotnet/SqlClient/pull/2834), [#​2851](https://github.com/dotnet/SqlClient/pull/2851), [#​2863](https://github.com/dotnet/SqlClient/pull/2863), [#​2864](https://github.com/dotnet/SqlClient/pull/2864), [#​2865](https://github.com/dotnet/SqlClient/pull/2865), [#​2869](https://github.com/dotnet/SqlClient/pull/2869), [#​2871](https://github.com/dotnet/SqlClient/pull/2871), [#​2837](https://github.com/dotnet/SqlClient/pull/2837), [#​2821](https://github.com/dotnet/SqlClient/pull/2821)
- Fixed cleanup behavior when column decryption fails. Prevents leaving stale data on the wire for pooled connections [#​2843](https://github.com/dotnet/SqlClient/pull/2843), [#​2825](https://github.com/dotnet/SqlClient/pull/2825)

### Changed

- Updated System.Configuration.ConfigurationManager from 8.0.0 to 8.0.1 for .Net 8 [#​2921](https://github.com/dotnet/SqlClient/pull/2921)
- Updated Microsoft.Extensions.Caching.Memory from 8.0.0 to 8.0.1 for .Net 8 [#​2921](https://github.com/dotnet/SqlClient/pull/2921)
- Code Health Improvements [#​2915](https://github.com/dotnet/SqlClient/pull/2915), [#​2844](https://github.com/dotnet/SqlClient/pull/2844), [#​2812](https://github.com/dotnet/SqlClient/pull/2812), [#​2805](https://github.com/dotnet/SqlClient/pull/2805), [#​2897](https://github.com/dotnet/SqlClient/pull/2897), [#​2376](https://github.com/dotnet/SqlClient/pull/2376), [#​2814](https://github.com/dotnet/SqlClient/pull/2814), [#​2889](https://github.com/dotnet/SqlClient/pull/2889), [#​2885](https://github.com/dotnet/SqlClient/pull/2885), [#​2854](https://github.com/dotnet/SqlClient/pull/2854), [#​2835](https://github.com/dotnet/SqlClient/pull/2835), [#​2442](https://github.com/dotnet/SqlClient/pull/2442), [#​2820](https://github.com/dotnet/SqlClient/pull/2820), [#​2831](https://github.com/dotnet/SqlClient/pull/2831), [#​2907](https://github.com/dotnet/SqlClient/pull/2907), [#​2910](https://github.com/dotnet/SqlClient/pull/2910), [#​2898](https://github.com/dotnet/SqlClient/pull/2898), [#​2928](https://github.com/dotnet/SqlClient/pull/2928), [#​2929](https://github.com/dotnet/SqlClient/pull/2929), [#​2936](https://github.com/dotnet/SqlClient/pull/2936), [#​2939](https://github.com/dotnet/SqlClient/pull/2939)

## New Contributors
* @​Markeli made their first contribution in https://github.com/dotnet/SqlClient/pull/2797
* @​EamonHetherton made their first contribution in https://github.com/dotnet/SqlClient/pull/2411

For detailed release notes, refer to [6.0.0-preview2.md](https://github.com/dotnet/SqlClient/blob/main/release-notes/6.0/6.0.0-preview2.md)

## 6.0.0-preview1.24240.8

## [Preview Release 6.0.0-preview1.24240.8] - 2024-08-27

This update brings the below changes over the 5.2 release:

### Breaking Changes

- Removed support for .NET Standard. [#​2386](https://github.com/dotnet/SqlClient/pull/2386)
- Removed UWP (uap) references. [#​2483](https://github.com/dotnet/SqlClient/pull/2483)

### Added

- Added `TokenCredential` object to take advantage of token caching in `ActiveDirectoryAuthenticationProvider`. [#​2380](https://github.com/dotnet/SqlClient/pull/2380)
- Added `DateOnly` and `TimeOnly` support to `DataTable` as a structured parameter. [#​2258](https://github.com/dotnet/SqlClient/pull/2258)
- Added `Microsoft.Data.SqlClient.Diagnostics.SqlClientDiagnostic` type in .NET. [#​2226](https://github.com/dotnet/SqlClient/pull/2226)
- Added scope trace for `GenerateSspiClientContext`. [#​2497](https://github.com/dotnet/SqlClient/pull/2497), [#​2725](https://github.com/dotnet/SqlClient/pull/2725)

### Fixed

- Fixed `Socket.Connect` timeout issue caused by thread starvation. [#​2777](https://github.com/dotnet/SqlClient/pull/2777)
- Fixed pending data with `SqlDataReader` against an encrypted column. [#​2618](https://github.com/dotnet/SqlClient/pull/2618)
- Fixed Entra authentication when using infinite connection timeout in `ActiveDirectoryAuthenticationProvider`. [#​2651](https://github.com/dotnet/SqlClient/pull/2651)
- Fixed `GetSchema` by excluding unsupported engines due to lack of support for `ASSEMBLYPROPERTY` function. [#​2593](https://github.com/dotnet/SqlClient/pull/2593)
- Fixed SSPI retry negotiation with default port in .NET. [#​2559](https://github.com/dotnet/SqlClient/pull/2559)
- Fixed assembly path in .NET 8.0 and `.AssemblyAttributes`. [#​2550](https://github.com/dotnet/SqlClient/pull/2550)
- Fixed certificate chain validation. [#​2487](https://github.com/dotnet/SqlClient/pull/2487)
- Fixed clone of `SqlConnection` to include `AccessTokenCallback`. [#​2525](https://github.com/dotnet/SqlClient/pull/2525)
- Fixed issue with `DateTimeOffset` in table-valued parameters, which was introduced in 5.2. [#​2453](https://github.com/dotnet/SqlClient/pull/2453)
- Fixed `ArgumentNullException` on `SqlDataRecord.GetValue` when using user-defined data type on .NET. [#​2448](https://github.com/dotnet/SqlClient/pull/2448)
- Fixed `SqlBuffer` and `SqlGuild` when it's null. [#​2310](https://github.com/dotnet/SqlClient/pull/2310)
- Fixed `SqlBulkCopy.WriteToServer` state in a consecutive calls. [#​2375](https://github.com/dotnet/SqlClient/pull/2375)
- Fixed null reference exception with `SqlConnection.FireInfoMessageEventOnUserErrors` after introducing the batch command. [#​2399](https://github.com/dotnet/SqlClient/pull/2399)

### Changed

- Updated Microsoft.Data.SqlClient.SNI version to `6.0.0-preview1.24226.4`. [#​2772](https://github.com/dotnet/SqlClient/pull/2772)
- Improved access to `SqlAuthenticationProviderManager.Instance` and avoid early object initiation. [#​2636](https://github.com/dotnet/SqlClient/pull/2636)
- Removed undocumented properties of `Azure.Identity` in `ActiveDirectoryAuthenticationProvider`. [#​2562](https://github.com/dotnet/SqlClient/pull/2562)
- Replaced `System.Runtime.Caching` with `Microsoft.Extensions.Caching.Memory`. [#​2493](https://github.com/dotnet/SqlClient/pull/2493)
- Updated `EnableOptimizedParameterBinding` to only accept text mode commands. [#​2417](https://github.com/dotnet/SqlClient/pull/2417)
- Updated `Azure.Identity` version from `1.10.3` to `1.11.4`. [#​2577](https://github.com/dotnet/SqlClient/pull/2577)
- Updated `Azure.Core` version from `1.35.0` to `1.38.0`. [#​2462](https://github.com/dotnet/SqlClient/pull/2462)
- Updated `Azure.Security.KeyVault.Keys` version from `4.4.0` to `4.5.0`. [#​2462](https://github.com/dotnet/SqlClient/pull/2462)
- Updated `Microsoft.IdentityModel.JsonWebTokens` and `Microsoft.IdentityModel.Protocols.OpenIdConnect` from `6.35.0` to `7.5.0`. [#​2429](https://github.com/dotnet/SqlClient/pull/2429)
- Removed direct dependency to `Microsoft.Identity.Client` to take the transient dependecy through `Azure.Identity`. [#​2577](https://github.com/dotnet/SqlClient/pull/2577)
- Removed unnecessary references `Microsoft.Extensions.Caching.Memory` and `System.Security.Cryptography.Cng` after removing .NET Standard. [#​2577](https://github.com/dotnet/SqlClient/pull/2577)
- Improved memory allocation when reader opened by `CommandBehavior.SequentialAccess` over the big string columns. [#​2356](https://github.com/dotnet/SqlClient/pull/2356)
- Improved SSPI by consolidating the context generation to single abstraction and using memory/span for SSPI generation. [#​2255](https://github.com/dotnet/SqlClient/pull/2255), [#​2447](https://github.com/dotnet/SqlClient/pull/2447)
- Reverted the [#​2281](https://github.com/dotnet/SqlClient/pull/2281) code changes on ManagedSNI. [#​2395](https://github.com/dotnet/SqlClient/pull/2395)
- Updated assembly version to 6.0.0.0. [#​2382](https://github.com/dotnet/SqlClient/pull/2382)
- Code health improvements: [#​2366](https://github.com/dotnet/SqlClient/pull/2366), [#​2369](https://github.com/dotnet/SqlClient/pull/2369), [#​2381](https://github.com/dotnet/SqlClient/pull/2381), [#​2390](https://github.com/dotnet/SqlClient/pull/2390), [#​2392](https://github.com/dotnet/SqlClient/pull/2392), [#​2403](https://github.com/dotnet/SqlClient/pull/2403), [#​2410](https://github.com/dotnet/SqlClient/pull/2410), [#​2413](https://github.com/dotnet/SqlClient/pull/2413), [#​2425](https://github.com/dotnet/SqlClient/pull/2425), [#​2428](https://github.com/dotnet/SqlClient/pull/2428), [#​2440](https://github.com/dotnet/SqlClient/pull/2440), [#​2443](https://github.com/dotnet/SqlClient/pull/2443), [#​2450](https://github.com/dotnet/SqlClient/pull/2450), [#​2466](https://github.com/dotnet/SqlClient/pull/2466), [#​2486](https://github.com/dotnet/SqlClient/pull/2486), [#​2521](https://github.com/dotnet/SqlClient/pull/2521), [#​2522](https://github.com/dotnet/SqlClient/pull/2522), [#​2533](https://github.com/dotnet/SqlClient/pull/2533), [#​2552](https://github.com/dotnet/SqlClient/pull/2552), [#​2560](https://github.com/dotnet/SqlClient/pull/2560), [#​2726](https://github.com/dotnet/SqlClient/pull/2726), [#​2751](https://github.com/dotnet/SqlClient/pull/2751), [#​2811](https://github.com/dotnet/SqlClient/pull/2811)
 ... (truncated)

## 5.2.3

This update brings the following changes since the 5.2.2 release:

### Fixed

- Fixed possible `NullPointerException` during socket receive (PR [#​3284](https://github.com/dotnet/SqlClient/pull/3284))
- Fixed inconsistencies between source and reference projects (PR [#​3124](https://github.com/dotnet/SqlClient/pull/3124))
- Adjusted retry logic to allow errors with negative numbers to be considered transient (PR [#​3185](https://github.com/dotnet/SqlClient/pull/3185))

### Changed

- Updated the following dependencies:
  - [System.Private.Uri](https://www.nuget.org/packages/System.Private.Uri) 4.3.2 - Avoid transitive [CVE-2019-0820](https://msrc.microsoft.com/update-guide/en-US/advisory/CVE-2019-0820) (PR [#​3076](https://github.com/dotnet/SqlClient/pull/3076))
  - [Microsoft.Extensions.Caching.Memory](https://www.nuget.org/packages/Microsoft.Extensions.Caching.Memory/6.0.3) 6.0.1 to 6.0.3 - Avoid [CVE-2024-43483](https://github.com/advisories/GHSA-qj66-m88j-hmgj) (PR [#​3280](https://github.com/dotnet/SqlClient/pull/3280))

Commits viewable in [compare view](https://github.com/dotnet/sqlclient/compare/v5.2.2...v6.1.4).
</details>

Pinned [Microsoft.Data.SqlClient](https://github.com/dotnet/sqlclient) at 6.1.4.

<details>
<summary>Release notes</summary>

_Sourced from [Microsoft.Data.SqlClient's releases](https://github.com/dotnet/sqlclient/releases)._

## 6.1.4

This update brings the following changes since the [6.1.3](https://github.com/dotnet/SqlClient/blob/main/release-notes/6.1/6.1.3.md) release:

### Fixed

- Fixed NullReferenceException issue with `SqlDataAdapter` when processing batch scenarios where certain SQL RPC calls may not include system parameters.
  ([#​3877](https://github.com/dotnet/SqlClient/pull/3877))
- Fixed connection pooling issue where extra connection deactivation was causing active connection counts to go negative.
  ([#​3776](https://github.com/dotnet/SqlClient/pull/3776))

### Added

#### AppContext Switch for enabling MultiSubnetFailover

*What Changed:*

- Added new AppContext switch `Switch.Microsoft.Data.SqlClient.EnableMultiSubnetFailoverByDefault` to set `MultiSubnetFailover=true` by default in connection string.
  ([#​3851](https://github.com/dotnet/SqlClient/pull/3851))

*Who Benefits:*

- Applications that need MultiSubnetFailover enabled globally without modifying connection strings.

*Impact:*

- Applications can now enable MultiSubnetFailover globally using one of the following methods:

```c#
// In application code
AppContext.SetSwitch("Switch.Microsoft.Data.SqlClient.EnableMultiSubnetFailoverByDefault", true);

// In runtimeconfig.json
{
  "configProperties": {
    "Switch.Microsoft.Data.SqlClient.EnableMultiSubnetFailoverByDefault": true
  }
}

<!-- In App.Config -->
<runtime>
  <AppContextSwitchOverrides value="Switch.Microsoft.Data.SqlClient.EnableMultiSubnetFailoverByDefault=true" />
</runtime>

Changed

• Optimized SqlStatistics execution timing by using Environment.TickCount instead of more expensive timing mechanisms.
  ... (truncated)

6.1.3

This update includes the following changes since the 6.1.2 release:

Added

App Context Switch for Ignoring Server-Provided Failover Partner

What Changed:

• A new app context switch Switch.Microsoft.Data.SqlClient.IgnoreServerProvidedFailoverPartner was introduced to let the client ignore server-provided failover partner info in Basic Availability Groups (BAGs). When the switch is enabled, only the failover partner specified in the connection string is used; server-supplied partner values are skipped. This context switch was introduced in PR #​3702.

Who Benefits:

• Applications connecting to SQL Server BAGs using TCP and custom ports, especially where the server's provided partner name lacks the protocol, host, or port. This avoids connection failures when the server-provided partner is incompatible or incomplete.
• Teams who manage availability groups and rely on client-side control of failover behavior in heterogeneous networking environments.

Impact:

• If your environment might be affected (i.e., you operate a BAG with custom ports, or have experienced failures after failover), you can enable the new switch in your application:

AppContext.SetSwitch("Switch.Microsoft.Data.SqlClient.IgnoreServerProvidedFailoverPartner", true);

• Then, ensure your connection string includes your preferred failover partner (with correct tcp:host,port) so that the client uses that instead of the server's suggestion.
• Without enabling this, by default, the client continues to prefer the server-provided partner, maintaining backwards compatibility.

Fixed

• Fixed an issue to ensure reliable metrics initialization during startup, preventing missed telemetry when EventSource is enabled early. (#​3718)

Target Platform Support

• .NET Framework 4.6.2+ (Windows ARM64, Windows x86, Windows x64)
• .NET 8.0+ (Windows x86, Windows x64, Windows ARM64, Windows ARM, Linux, macOS)

Dependencies

.NET Framework 4.6.2+

• Azure.Core 1.47.1
• Azure.Identity 1.14.2
• Microsoft.Bcl.Cryptography 8.0.0
• Microsoft.Data.SqlClient.SNI 6.0.2
• Microsoft.Extensions.Caching.Memory 8.0.1
• Microsoft.IdentityModel.JsonWebTokens 7.7.1
• Microsoft.IdentityModel.Protocols.OpenIdConnect 7.7.1
• System.Buffers 4.5.1
• System.Data.Common 4.3.0
• System.Security.Cryptography.Pkcs 8.0.1
• System.Text.Encodings.Web 8.0.0
  ... (truncated)

6.1.2

This update brings the below changes over the previous stable release:

Fixed

• Fixed an issue where initializing PerformanceCounters would throw System.InvalidOperationException #​3629
• Fixed an issue where a Custom SqlClientAuthenticationProvider was being overwritten by default implementation. #​3651
• Fixed a concurrency issue in connection pooling where the number of active connections could be lower than the configured maximum pool size. #​3653

Commits viewable in compare view.

Pinned Microsoft.NETCore.App at 2.0.3.

Pinned Newtonsoft.Json at 13.0.1.

Pinned System.IdentityModel.Tokens.Jwt at 8.16.0.

Release notes

Sourced from System.IdentityModel.Tokens.Jwt's releases.

8.16.0

New Features

• Add telemetry around signature validation. See PR #​3415 for details.

Fundamentals

• Fix FileVersion format to use two-digit year and day of year. See PR #​3389 for details.

8.15.0

New Features

• Add ECDsa support in X509SecurityKey and JsonWebKeyConverter.ConvertFromX509SecurityKey
  Extended X509SecurityKey and JsonWebKeyConverter.ConvertFromX509SecurityKey to support ECDSA keys.
  See PR #​2377 for details.

Bug Fixes

• Sanitize logs to avoid leaking sensitive data
  Updated logging to sanitize sensitive values, reducing the risk of inadvertently exposing secrets or PII in logs.
  See PR #​3316 for details.
• Optimize log sanitization with SearchValues
  Improved the performance of the log sanitization logic introduced earlier by using SearchValues, making sanitization more efficient in high-throughput scenarios.
  See PR #​3341 for details.
• Update test for IDX10400
  Adjusted the IDX10400 test to align with the current behavior and error messaging.
  See PR #​3314 for details.

Fundamentals

• Add supported algorithm tests
  Added new tests to validate the set of supported cryptographic algorithms, increasing confidence in algorithm coverage and compatibility.
  See PR #​3296 for details.
• Migrate repository agent rules from .clinerules to agents.md
  Moved repository agent/AI-assist rules into markdown documentation to make them more visible and easier to maintain.
  See PR #​3313 for details.
• Migrate Microsoft.IdentityModel.TestExtensions from Newtonsoft.Json to System.Text.Json
  Updated Microsoft.IdentityModel.TestExtensions to use System.Text.Json instead of Newtonsoft.Json, aligning tests with the runtime serialization stack.
  See PR #​3356 for details.
• Disable code coverage comments
  Turned off automated code coverage comments on PRs to reduce noise while retaining coverage data elsewhere.
  See PR #​3349 for details.
• Fix CodeQL alerts
  Addressed CodeQL-reported issues to improve security posture and static analysis cleanliness.
  See PR #​3364 for details.

.NET 10 / SDK and tooling updates

• Building with .NET 10 preview / RC 1
  Updated the repository to build and test against .NET 10.0 preview/RC1, ensuring early compatibility with the upcoming runtime.
  See PRs #​3287, #​3357, and #​3358 for details.
• Fix .NET 10 test execution consistency
  Ensured consistent use of the TargetNetNext parameter across build, test, and pack phases so .NET 10.0 tests execute reliably.
  See PR #​3337 for details.
• Update project files and workflows for .NET 10.0 compatibility
  Adjusted project files and CI workflows to correctly target and run on .NET 10.0, including test and pack scenarios.
  See PR #​3363 for details.
• Update .NET version to meet CG compliance
  Updated the .NET version references to be compliant with corporate governance (CG) requirements.
  See PR #​3353 for details.
• Update Coverlet collector and test SDK
  • Bumped CoverletCollectorVersion to 6.0.4.
    See PR #​3333 for details.
  • Upgraded Microsoft.NET.Test.Sdk to a newer version for improved test reliability and tooling support.
    ... (truncated)

8.14.0

8.14.0

Bug Fixes

• Switch back to use ValidationResult instead of OperationResult when validating a token in a new experimental validation flow. Additionally removed the dependency on Microsoft.IdentityModel.Abstractions. See #​3299 for details.

8.13.1

8.13.1

Dependencies

Microsoft.IdentityModel now depends on Microsoft.Identity.Abstractions 9.3.0

Bug Fixes

• Fixed a decompression failure happening for large JWE payloads. See #​3286 for details.

Work related to redesign of IdentityModel's token validation logic #​2711

• Update the validation methods to return Microsoft.Identity.Abstractions.OperationResult. See #​3284 for details.

8.13.0

8.13.0

8.13.0

Fundamentals

• CaseSensitiveClaimsIdentity.SecurityToken setter is now protected internal (was internal). See PR #​3278 for details.
• Update .NET SDK version to 9.0.108 used when building or running the code. See PR #​3274 for details.
• Update RsaSecurityKey.cs to replace the Pkcs1 padding by Pss from HasPrivateKey check. See #​3280 for details.

What's Changed

• Make CaseSensitiveClaimsIdentity.SecurityToken setter protected by @​keegan-caruso in Make CaseSensitiveClaimsIdentity.SecurityToken setter protected AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3278
• Update .NET SDK version in global.json from 9.0.107 to 9.0.108 by @​Copilot in Update .NET SDK version in global.json from 9.0.107 to 9.0.108 AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3274
• Update RsaSecurityKey.cs to remove Pkcs 1 by @​keegan-caruso in Update RsaSecurityKey.cs to remove Pkcs 1 AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3280
• changelog for 8.13 by @​jennyf19 in changelog for 8.13 AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3282

New Contributors

• @​Copilot made their first contribution in Update .NET SDK version in global.json from 9.0.107 to 9.0.108 AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3274

Full Changelog: AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet@8.12.1...8.13.0

8.12.1

8.12.1

Fundamentals

• Update .NET SDK version to 9.0.107 used when building or running the code. See #​3263 for details.
• To keep our experimental code separate from production code, all files associated with experimental features have been moved to the Experimental folders. See PR #​3261 for details.
• Experimental code leaked into TokenValidationResult from early prototypes. See PR #​3259 for details.

What's Changed

• Remove experimental code from TokenValidationResult by @​brentschmaltz in Remove experimental code from TokenValidationResult AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3259
• Moved files to experimental folder by @​brentschmaltz in Moved files to experimental folder AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3261
• Update global.json to latest by @​jennyf19 in Update global.json to latest AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3263

Full Changelog: AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet@8.12.0...8.12.1

8.12.0

8.12.0

New Features

• Enhance ConfigurationManager with event handling
  Added event handling capabilities to the ConfigurationManager, enabling consumers to subscribe to configuration change events. This enhancement improves extensibility and allows more responsive applications. For details see #​3253

Bug Fixes

• Add expected Base64UrlEncoder.Decode overload for NET6 and 8
  Introduced the expected overload of Base64UrlEncoder.Decode for .NET 6 and 8, ensuring compatibility and preventing missing method issues on these frameworks.
  For details see #​3249

Fundamentals

• Add AI assist rules
  Incorporated AI assist rules to enhance AI agents effectiveness.
  For details see #​3255
• Update PublicApiAnalyzers and BannedApiAnalyzers to 4.14.0
  Upgraded analyzer packages for improved diagnostics and code consistency (in particular delegates are added).
  For details see #​3256
• Move suppression of RS006 to csproj
  Centralized suppression of RS006 warnings in project files for easier management.
  For details see #​3230

What's Changed

• Move suppression of RS006 to csproj. by @​brentschmaltz in Move suppression of RS006 to csproj. AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3230
• Add expected Base64UrlEncoder.Decode overload for NET6 and 8 by @​pmaytak in Add expected Base64UrlEncoder.Decode overload for NET6 and 8 AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3250
• add ai assist rules by @​jennyf19 in add ai assist rules AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3255
• Enhance ConfigurationManager with event handling by @​GeoK in Enhance ConfigurationManager with event handling AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3254
• Update PublicApiAnalyzers and BannedApiAnalyzers to 4.14.0 by @​pmaytak in Update PublicApiAnalyzers and BannedApiAnalyzers to 4.14.0 AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3256
• Update CHANGELOG.md for 8.12.0 by @​jmprieur in Update CHANGELOG.md for 8.12.0 AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3258

Full Changelog: AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet@8.11.0...8.12.0

8.11.0

8.11.0

New Features:

• Microsoft.IdentityModel now exposes the AadIssuerValidator factory method publicly to enable caching functionality for AadIssuerValidator instances. See issue #​3245 for details.
• Added a new public async API: JsonWebTokenHandler.DecryptTokenWithConfigurationAsync, which decrypts a JWE token using keys from either TokenValidationParameters or, if not present, from configuration (such as via a ConfigurationManager). This enhancement improves developer experience by enabling asynchronous, cancellation-aware JWE decryption scenarios, aligning with modern .NET async patterns and making integration with external key/configuration sources more robust and observable. See PR #​3243 for details.

What's Changed

• few updates by @​jennyf19 in few updates AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3242
• Changelog for 8.10.0 by @​sruke in Changelog for 8.10.0 AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3241
• Exposes publicly override of AadIssuerValidator factory taking a delegate by @​jmprieur in Exposes publicly override of AadIssuerValidator factory taking a delegate AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3244
• update current version to 8.10.0 by @​brentschmaltz in update current version to 8.10.0 AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3246
• Add DecryptTokenWithConfiguration API by @​pmaytak in Add DecryptTokenWithConfiguration API AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3243
• changelog for 8.11 by @​jennyf19 in changelog for 8.11 AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3248

Full Changelog: AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet@8.10.0...8.11.0

8.10.0

8.10.0

Bug Fixes

• Corrected casing of the Type attribute in SubjectConfirmationData. See #​3206.
• Removed Microsoft.Bcl.Memory dependency for pre-.NET 9.0 targets. See #​3220.
• Aligned Microsoft.Extensions.Logging.Abstractions version to 8.0.0 for .NET 9 to match other targets. See #​3226.

Fundamentals

• Introduced Long-Term Support (LTS) policy. See #​3228 and #​3232.

8.9.0

8.9.0

Bug Fixes

• syncAfter has been updated to preserve UTC information, addressing a bug where GetConfigurationAsync does not refresh configuration in ConfigurationManager. See Don't lose TimeZone kind when creating sync after AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3213.
• Fixed a null reference issue in KeyInfo. See fix keyinfo null ref AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3203.

New Features

• Introduced a new delegate for reading custom token payload values on JsonWebToken. See Replace JsonWebToken ReadPayloadValue with a delegate AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#2981.
• Added an overload for ReadJsonWebToken to take a ReadOnlyMemory. See add an overload for ReadJsonWebToken to take a ReadOnlyMemory, add te… AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3205.

Fundamentals

• Utilized IList to avoid enumerator allocation during audience validation. See Use IList to avoid enumerator allocation AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3204.

8.8.0

8.8.0

New Features

• Adds the ability for the metadata refresh to be done as a blocking call, as per 8.0.1 behavior. This is done through the Switch.Microsoft.IdentityModel.UpdateConfigAsBlocking switch. If set, configuration calls will be blocking when metadata is updated, otherwise, if token arrive with a new signing keys, validation errors will be returned to the caller. See PR #​3193 for details.
• Identity.Model updates some log and error messages (IDX10214, IDX10215). If the information is needed for debugging purposes, it can be reverted via the Switch.Microsoft.IdentityModel.DoNotScrubExceptions AppContextSwitch. See PR #​3195 and https://aka.ms/identitymodel/app-context-switches for details.
• Change all plain object locks to System.Thread.Lock objects for .NET 9 or greater. See PRs #​3185 and #​3189 for details.

#...

Description has been truncated