Bump the nuget-dependencies group with 4 updates

[dependabot]

Updated Microsoft.AspNetCore.Authentication.JwtBearer from 8.0.20 to 8.0.22.

Release notes

Sourced from Microsoft.AspNetCore.Authentication.JwtBearer's releases.

8.0.22

Release

What's Changed

• Update branding to 8.0.22 by @​vseanreesermsft in Update branding to 8.0.22 dotnet/aspnetcore#63949
• [release/8.0] Update dependencies from dotnet/arcade by @​dotnet-maestro[bot] in [release/8.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#63664
• [release/8.0] (http2): Lower WINDOWS_UPDATE received on (half)closed stream to stream abortion by @​DeagleGross in [release/8.0] (http2): Lower WINDOWS_UPDATE received on (half)closed stream to stream abortion dotnet/aspnetcore#63903
• [release/8.0] (deps): Bump src/submodules/googletest from eb2d85e to 9706f75 by @​dependabot[bot] in [release/8.0] (deps): Bump src/submodules/googletest from eb2d85e to 9706f75 dotnet/aspnetcore#63893
• [release/8.0] Fixed devtools url used for debug with chrome and edge by @​github-actions[bot] in [release/8.0] Fixed devtools url used for debug with chrome and edge dotnet/aspnetcore#62080
• [release/8.0] Update dependencies from dotnet/source-build-reference-packages by @​dotnet-maestro[bot] in [release/8.0] Update dependencies from dotnet/source-build-reference-packages dotnet/aspnetcore#63665
• [release/8.0] Update dependencies from dotnet/source-build-reference-packages by @​dotnet-maestro[bot] in [release/8.0] Update dependencies from dotnet/source-build-reference-packages dotnet/aspnetcore#63957
• Merging internal commits for release/8.0 by @​vseanreesermsft in Merging internal commits for release/8.0 dotnet/aspnetcore#64035
• Mark productVersion.txt as shipping artifact in 8.0 by @​Copilot in Mark productVersion.txt as shipping artifact in 8.0 dotnet/aspnetcore#64067
• Revert log level severity for unknown proxy in ForwardedHeadersMiddleware by @​BrennanConroy in Revert log level severity for unknown proxy in ForwardedHeadersMiddleware dotnet/aspnetcore#64090

Full Changelog: dotnet/aspnetcore@v8.0.21...v8.0.22

8.0.21

Release

What's Changed

• Update branding to 8.0.21 by @​vseanreesermsft in Update branding to 8.0.21 dotnet/aspnetcore#63509
• [release/8.0] (deps): Bump src/submodules/googletest from 373af2e to eb2d85e by @​dependabot[bot] in [release/8.0] (deps): Bump src/submodules/googletest from 373af2e to eb2d85e dotnet/aspnetcore#63500
• [release/8.0] Make duplicate deb/rpm packages so we can sign them with the new PMC key by @​github-actions[bot] in [release/8.0] Make duplicate deb/rpm packages so we can sign them with the new PMC key dotnet/aspnetcore#63250
• [release/8.0] Extend Unofficial 1ES template in IdentityModel nightly tests job by @​github-actions[bot] in [release/8.0] Extend Unofficial 1ES template in IdentityModel nightly tests job dotnet/aspnetcore#63466
• [release/8.0] Quarantine ResponseBody_WriteContentLength_PassedThrough by @​github-actions[bot] in [release/8.0] Quarantine ResponseBody_WriteContentLength_PassedThrough dotnet/aspnetcore#63534
• [release/8.0] Update dependencies from dotnet/source-build-reference-packages by @​dotnet-maestro[bot] in [release/8.0] Update dependencies from dotnet/source-build-reference-packages dotnet/aspnetcore#63261
• [release/8.0] Use wait assert in flaky tests by @​ilonatommy in [release/8.0] Use wait assert in flaky tests dotnet/aspnetcore#63565
• [release/8.0] Update Microsoft.Build versions by @​github-actions[bot] in [release/8.0] Update Microsoft.Build versions dotnet/aspnetcore#62507
• Merging internal commits for release/8.0 by @​vseanreesermsft in Merging internal commits for release/8.0 dotnet/aspnetcore#63603
• backport(8.0): Fix runtime architecture detection logic in ANCM by @​DeagleGross in backport(8.0): Fix runtime architecture detection logic in ANCM dotnet/aspnetcore#63706

Full Changelog: dotnet/aspnetcore@v8.0.20...v8.0.21

Commits viewable in compare view.

Updated Microsoft.Data.SqlClient from 6.1.2 to 6.1.3.

Release notes

Sourced from Microsoft.Data.SqlClient's releases.

6.1.3

This update includes the following changes since the 6.1.2 release:

Added

App Context Switch for Ignoring Server-Provided Failover Partner

What Changed:

• A new app context switch Switch.Microsoft.Data.SqlClient.IgnoreServerProvidedFailoverPartner was introduced to let the client ignore server-provided failover partner info in Basic Availability Groups (BAGs). When the switch is enabled, only the failover partner specified in the connection string is used; server-supplied partner values are skipped. This context switch was introduced in PR #​3702.

Who Benefits:

• Applications connecting to SQL Server BAGs using TCP and custom ports, especially where the server's provided partner name lacks the protocol, host, or port. This avoids connection failures when the server-provided partner is incompatible or incomplete.
• Teams who manage availability groups and rely on client-side control of failover behavior in heterogeneous networking environments.

Impact:

• If your environment might be affected (i.e., you operate a BAG with custom ports, or have experienced failures after failover), you can enable the new switch in your application:

AppContext.SetSwitch("Switch.Microsoft.Data.SqlClient.IgnoreServerProvidedFailoverPartner", true);

• Then, ensure your connection string includes your preferred failover partner (with correct tcp:host,port) so that the client uses that instead of the server's suggestion.
• Without enabling this, by default, the client continues to prefer the server-provided partner, maintaining backwards compatibility.

Fixed

• Fixed an issue to ensure reliable metrics initialization during startup, preventing missed telemetry when EventSource is enabled early. (#​3718)

Target Platform Support

• .NET Framework 4.6.2+ (Windows ARM64, Windows x86, Windows x64)
• .NET 8.0+ (Windows x86, Windows x64, Windows ARM64, Windows ARM, Linux, macOS)

Dependencies

.NET Framework 4.6.2+

• Azure.Core 1.47.1
• Azure.Identity 1.14.2
• Microsoft.Bcl.Cryptography 8.0.0
• Microsoft.Data.SqlClient.SNI 6.0.2
• Microsoft.Extensions.Caching.Memory 8.0.1
• Microsoft.IdentityModel.JsonWebTokens 7.7.1
• Microsoft.IdentityModel.Protocols.OpenIdConnect 7.7.1
• System.Buffers 4.5.1
• System.Data.Common 4.3.0
• System.Security.Cryptography.Pkcs 8.0.1
• System.Text.Encodings.Web 8.0.0
  ... (truncated)

Commits viewable in compare view.

Updated Serilog.AspNetCore from 9.0.0 to 10.0.0.

Release notes

Sourced from Serilog.AspNetCore's releases.

10.0.0

What's Changed

• Update deprecated NuGet packages Microsoft.AspNetCore.* by @​adamashton in Update deprecated NuGet packages Microsoft.AspNetCore.*  serilog/serilog-aspnetcore#399
• Update to .NET 10 SDK and dependencies by @​nblumhardt in Update to .NET 10 SDK and dependencies serilog/serilog-aspnetcore#401

New Contributors

• @​adamashton made their first contribution in Update deprecated NuGet packages Microsoft.AspNetCore.*  serilog/serilog-aspnetcore#399

Full Changelog: serilog/serilog-aspnetcore@v9.0.0...v10.0.0

Commits viewable in compare view.

Updated Swashbuckle.AspNetCore from 9.0.5 to 10.0.1.

Release notes

Sourced from Swashbuckle.AspNetCore's releases.

10.0.1

What's Changed

• Prepare for OpenAPI.NET 3.0 by @​martincostello in Prepare for OpenAPI.NET 3.0 domaindrivendev/Swashbuckle.AspNetCore#3647
• Fix exception sorting operation tags by @​martincostello in Fix exception sorting operation tags domaindrivendev/Swashbuckle.AspNetCore#3652
• Improve version table by @​martincostello in Improve version table domaindrivendev/Swashbuckle.AspNetCore#3653
• Update migration guide by @​martincostello in Update migration guide domaindrivendev/Swashbuckle.AspNetCore#3654

Full Changelog: domaindrivendev/Swashbuckle.AspNetCore@v10.0.0...v10.0.1

10.0.0

Swashbuckle.AspNetCore v10.0.0

[!IMPORTANT]
This release contains major breaking changes.

Read our v10 migration guide for further information.

With this release, Swashbuckle.AspNetCore adds support for generating OpenAPI 3.1 documents and for ASP.NET Core 10.

Swashbuckle.AspNetCore v10 depends on OpenAPI.NET v2.3 which introduces many breaking changes to the public API surface. More information can be found in their OpenAPI.NET v2 Upgrade Guide.

To reduce the number of breaking behavioural changes in Swashbuckle.AspNetCore v10, generation of OpenAPI 3.1 documents is opt-in.
To generate OpenAPI 3.1 documents, change the OpenAPI version as shown in the code snippet below:

app.UseSwagger(options =>
{
    options.OpenApiVersion = OpenApiSpecVersion.OpenApi3_1;
});

[!TIP]
It is strongly recommended that you upgrade to Swashbuckle.AspNetCore v9.0.6 before upgrading to v10.

[!IMPORTANT]
Use of Swashbuckle.AspNetCore with the ASP.NET Core WithOpenApi() method is no longer supported.

What's Changed

• Update README badges by @​martincostello in Update README badges domaindrivendev/Swashbuckle.AspNetCore#3597
• Extend NuGet package validation by @​martincostello in Extend NuGet package validation domaindrivendev/Swashbuckle.AspNetCore#3602
• Support .NET 10 by @​martincostello in Support .NET 10 domaindrivendev/Swashbuckle.AspNetCore#3283

Full Changelog: domaindrivendev/Swashbuckle.AspNetCore@v9.0.6...v10.0.0

9.0.6

What's Changed

• Bump redoc from 2.5.0 to 2.5.1 by @​dependabot in Bump redoc from 2.5.0 to 2.5.1 in /src/Swashbuckle.AspNetCore.ReDoc domaindrivendev/Swashbuckle.AspNetCore#3587
• Bump swagger-ui from 5.29.1 to 5.29.2 by @​dependabot in Bump swagger-ui-dist from 5.29.1 to 5.29.2 in /src/Swashbuckle.AspNetCore.SwaggerUI domaindrivendev/Swashbuckle.AspNetCore#3595

Full Changelog: domaindrivendev/Swashbuckle.AspNetCore@v9.0.5...v9.0.6

Commits viewable in compare view.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml