Skip to content

Manual Updates 20241002 SFI nuget bumps #996

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 2 commits into from
Oct 7, 2024
Merged

Manual Updates 20241002 SFI nuget bumps #996

merged 2 commits into from
Oct 7, 2024

Conversation

@moljac
Copy link
Contributor

@moljac moljac commented Oct 3, 2024

Does this change any of the generated binding API's?

No.

Describe your contribution

Bumping nugets in some projects. Namely, builds with net9.0-rc1 revealed several security vulnerabilities:

/Users/Shared/Projects/d/X/AX/mu-20240220-tfm-net90/util/Xamarin.AndroidBinderator/Xamarin.AndroidBinderator/Xamarin.AndroidBinderator.csproj : warning NU1904: Package 'System.Text.Encodings.Web' 4.4.0 has a known critical severity vulnerability, https://github.com/advisories/GHSA-ghhp-997w-qr28
/Users/Shared/Projects/d/X/AX/mu-20240220-tfm-net90/util/Xamarin.AndroidBinderator/Xamarin.AndroidBinderator.Tool/Xamarin.AndroidBinderator.Tool.csproj : warning NU1904: Package 'System.Text.Encodings.Web' 4.4.0 has a known critical severity vulnerability, https://github.com/advisories/GHSA-ghhp-997w-qr28
/Users/Shared/Projects/d/X/AX/mu-20240220-tfm-net90/util/Xamarin.AndroidBinderator/Xamarin.AndroidBinderator/Xamarin.AndroidBinderator.csproj : warning NU1903: Package 'System.Text.RegularExpressions' 4.3.0 has a known high severity vulnerability, https://github.com/advisories/GHSA-cmhx-cq75-c4mj
/Users/Shared/Projects/d/X/AX/mu-20240220-tfm-net90/util/Xamarin.AndroidBinderator/Xamarin.AndroidBinderator.Tool/Xamarin.AndroidBinderator.Tool.csproj : warning NU1903: Package 'System.Text.RegularExpressions' 4.3.0 has a known high severity vulnerability, https://github.com/advisories/GHSA-cmhx-cq75-c4mj
/Users/Shared/Projects/d/X/AX/mu-20240220-tfm-net90/util/Xamarin.AndroidBinderator/Xamarin.AndroidBinderator.Tool/Xamarin.AndroidBinderator.Tool.csproj : warning NU1904: Package 'System.Text.Encodings.Web' 4.4.0 has a known critical severity vulnerability, https://github.com/advisories/GHSA-ghhp-997w-qr28
/Users/Shared/Projects/d/X/AX/mu-20240220-tfm-net90/util/Xamarin.AndroidBinderator/Xamarin.AndroidBinderator.Tool/Xamarin.AndroidBinderator.Tool.csproj : warning NU1903: Package 'System.Text.RegularExpressions' 4.3.0 has a known high severity vulnerability, https://github.com/advisories/GHSA-cmhx-cq75-c4mj
/Users/Shared/Projects/d/X/AX/mu-20240220-tfm-net90/util/Xamarin.AndroidBinderator/Xamarin.AndroidBinderator/Xamarin.AndroidBinderator.csproj : warning NU1904: Package 'System.Text.Encodings.Web' 4.4.0 has a known critical severity vulnerability, https://github.com/advisories/GHSA-ghhp-997w-qr28
/Users/Shared/Projects/d/X/AX/mu-20240220-tfm-net90/util/Xamarin.AndroidBinderator/Xamarin.AndroidBinderator/Xamarin.AndroidBinderator.csproj : warning NU1903: Package 'System.Text.RegularExpressions' 4.3.0 has a known high severity vulnerability, https://github.com/advisories/GHSA-cmhx-cq75-c4mj
/Users/Shared/Projects/d/X/AX/mu-20240220-tfm-net90/util/Xamarin.AndroidBinderator/Xamarin.AndroidBinderator.Tool/Xamarin.AndroidBinderator.Tool.csproj : warning NU1904: Package 'System.Text.Encodings.Web' 4.4.0 has a known critical severity vulnerability, https://github.com/advisories/GHSA-ghhp-997w-qr28
/Users/Shared/Projects/d/X/AX/mu-20240220-tfm-net90/util/Xamarin.AndroidBinderator/Xamarin.AndroidBinderator.Tool/Xamarin.AndroidBinderator.Tool.csproj : warning NU1903: Package 'System.Text.RegularExpressions' 4.3.0 has a known high severity vulnerability, https://github.com/advisories/GHSA-cmhx-cq75-c4mj
/Users/Shared/Projects/d/X/AX/mu-20240220-tfm-net90/util/Xamarin.AndroidBinderator/Xamarin.AndroidBinderator.Tool/Xamarin.AndroidBinderator.Tool.csproj : warning NU1904: Package 'System.Text.Encodings.Web' 4.4.0 has a known critical severity vulnerability, https://github.com/advisories/GHSA-ghhp-997w-qr28
/Users/Shared/Projects/d/X/AX/mu-20240220-tfm-net90/util/Xamarin.AndroidBinderator/Xamarin.AndroidBinderator.Tool/Xamarin.AndroidBinderator.Tool.csproj : warning NU1903: Package 'System.Text.RegularExpressions' 4.3.0 has a known high severity vulnerability, https://github.com/advisories/GHSA-cmhx-cq75-c4mj

@moljac moljac mentioned this pull request Oct 3, 2024
Open
@moljac moljac requested a review from jpobst October 7, 2024 11:38
@moljac moljac merged commit a86dfdc into main Oct 7, 2024
6 checks passed
@moljac moljac deleted the mu-20241002-sfi-nuget-bumps branch October 7, 2024 18:39
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

1 more reviewer

@jpobst jpobst jpobst approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@moljac @jpobst