From 6117871f597c845e86f56243b58f3917e3f2eff6 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 19 Mar 2024 08:56:49 -0700 Subject: [PATCH 1/6] [main] Bump the identity-dependencies group (#6251) Bumps the identity-dependencies group in /eng/dependabot/independent with 1 update: [Microsoft.Identity.Web](https://github.com/AzureAD/microsoft-identity-web). Updates `Microsoft.Identity.Web` from 2.17.1 to 2.17.2 - [Release notes](https://github.com/AzureAD/microsoft-identity-web/releases) - [Changelog](https://github.com/AzureAD/microsoft-identity-web/blob/master/changelog.md) - [Commits](https://github.com/AzureAD/microsoft-identity-web/commits) --- updated-dependencies: - dependency-name: Microsoft.Identity.Web dependency-type: direct:production update-type: version-update:semver-patch dependency-group: identity-dependencies ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- eng/dependabot/independent/Versions.props | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/eng/dependabot/independent/Versions.props b/eng/dependabot/independent/Versions.props index 39b033bb021..701fa4fcd24 100644 --- a/eng/dependabot/independent/Versions.props +++ b/eng/dependabot/independent/Versions.props @@ -5,7 +5,7 @@ 1.10.4 12.19.1 12.17.1 - 2.17.1 + 2.17.2 1.6.13 4.3.2 5.0.0 From 8d9f69eabfc33181b1f21858d67a1c233f61b549 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 21 Mar 2024 11:30:10 -0700 Subject: [PATCH 2/6] Bump dawidd6/action-download-artifact from 3.1.2 to 3.1.4 (#6274) Bumps [dawidd6/action-download-artifact](https://github.com/dawidd6/action-download-artifact) from 3.1.2 to 3.1.4. - [Release notes](https://github.com/dawidd6/action-download-artifact/releases) - [Commits](https://github.com/dawidd6/action-download-artifact/compare/71072fbb1229e1317f1a8de6b04206afb461bd67...09f2f74827fd3a8607589e5ad7f9398816f540fe) --- updated-dependencies: - dependency-name: dawidd6/action-download-artifact dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/submit-linter-suggestions.yml | 2 +- .github/workflows/submit-to-do-issue.yml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/submit-linter-suggestions.yml b/.github/workflows/submit-linter-suggestions.yml index 1a4c9d03fbb..cc98a9b091b 100644 --- a/.github/workflows/submit-linter-suggestions.yml +++ b/.github/workflows/submit-linter-suggestions.yml @@ -49,7 +49,7 @@ jobs: # The default artifact download action doesn't support cross-workflow # artifacts, so use a 3rd party one. - name: 'Download linting results' - uses: dawidd6/action-download-artifact@71072fbb1229e1317f1a8de6b04206afb461bd67 + uses: dawidd6/action-download-artifact@09f2f74827fd3a8607589e5ad7f9398816f540fe with: workflow: ${{env.workflow_name}} run_id: ${{github.event.workflow_run.id }} diff --git a/.github/workflows/submit-to-do-issue.yml b/.github/workflows/submit-to-do-issue.yml index 31b0793e112..518ac4a701e 100644 --- a/.github/workflows/submit-to-do-issue.yml +++ b/.github/workflows/submit-to-do-issue.yml @@ -35,7 +35,7 @@ jobs: # The default artifact download action doesn't support cross-workflow # artifacts, so use a 3rd party one. - name: 'Download linting results' - uses: dawidd6/action-download-artifact@71072fbb1229e1317f1a8de6b04206afb461bd67 + uses: dawidd6/action-download-artifact@09f2f74827fd3a8607589e5ad7f9398816f540fe with: workflow: ${{env.workflow_name}} run_id: ${{github.event.workflow_run.id }} From d51fe0c3188a7f5914b5425054746b84724e280c Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 21 Mar 2024 11:30:25 -0700 Subject: [PATCH 3/6] Bump dependabot/fetch-metadata from 1.6.0 to 1.7.0 (#6284) Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) from 1.6.0 to 1.7.0. - [Release notes](https://github.com/dependabot/fetch-metadata/releases) - [Commits](https://github.com/dependabot/fetch-metadata/compare/c9c4182bf1b97f5224aee3906fd373f6b61b4526...8348ea7f5d949b08c7f125a44b569c9626b05db3) --- updated-dependencies: - dependency-name: dependabot/fetch-metadata dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/verify-dependabot-clearly-defined.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/verify-dependabot-clearly-defined.yml b/.github/workflows/verify-dependabot-clearly-defined.yml index d761be2bf95..afb22881fe0 100644 --- a/.github/workflows/verify-dependabot-clearly-defined.yml +++ b/.github/workflows/verify-dependabot-clearly-defined.yml @@ -14,7 +14,7 @@ jobs: steps: - name: Fetch Dependabot metadata id: metadata - uses: dependabot/fetch-metadata@c9c4182bf1b97f5224aee3906fd373f6b61b4526 + uses: dependabot/fetch-metadata@8348ea7f5d949b08c7f125a44b569c9626b05db3 - name: Check ClearlyDefined if: ${{steps.metadata.outputs.package-ecosystem == 'nuget'}} From 472281393a45f9c8764f7a75452d55a29d7ae7c3 Mon Sep 17 00:00:00 2001 From: "dotnet-maestro[bot]" <42748379+dotnet-maestro[bot]@users.noreply.github.com> Date: Fri, 22 Mar 2024 14:23:12 +0000 Subject: [PATCH 4/6] [main] Update dependencies from dotnet/symstore (#6276) [main] Update dependencies from dotnet/symstore - Merge branch 'main' into darc-main-4bef7275-3d62-4a04-aeac-7d594b82fc35 --- eng/Version.Details.xml | 4 ++-- eng/Versions.props | 2 +- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/eng/Version.Details.xml b/eng/Version.Details.xml index e7cdf0c5b6d..db9b98d36b4 100644 --- a/eng/Version.Details.xml +++ b/eng/Version.Details.xml @@ -46,9 +46,9 @@ https://github.com/dotnet/arcade f311667e0587f19c3fa9553a909975662107a351 - + https://github.com/dotnet/symstore - 12fbd806da23e09bdf12352266b4de7253677f29 + 3a8a570f6b53a077bcc62b8224089f3d23236c13 https://dev.azure.com/dnceng/internal/_git/dotnet-runtime diff --git a/eng/Versions.props b/eng/Versions.props index 877de8d5926..7d9cbe0d3f8 100644 --- a/eng/Versions.props +++ b/eng/Versions.props @@ -67,7 +67,7 @@ 8.0.1 8.0.1-servicing.23580.1 - 1.0.516101 + 1.0.517001 $(MicrosoftNETCoreApp31Version) From 998885ddf3fcbb47d0295544f69e2b944c219ce8 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 22 Mar 2024 14:33:48 -0700 Subject: [PATCH 5/6] Bump dependabot/fetch-metadata from 1.7.0 to 2.0.0 (#6290) Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) from 1.7.0 to 2.0.0. - [Release notes](https://github.com/dependabot/fetch-metadata/releases) - [Commits](https://github.com/dependabot/fetch-metadata/compare/8348ea7f5d949b08c7f125a44b569c9626b05db3...0fb21704c18a42ce5aa8d720ea4b912f5e6babef) --- updated-dependencies: - dependency-name: dependabot/fetch-metadata dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/verify-dependabot-clearly-defined.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/verify-dependabot-clearly-defined.yml b/.github/workflows/verify-dependabot-clearly-defined.yml index afb22881fe0..0adf57b25d9 100644 --- a/.github/workflows/verify-dependabot-clearly-defined.yml +++ b/.github/workflows/verify-dependabot-clearly-defined.yml @@ -14,7 +14,7 @@ jobs: steps: - name: Fetch Dependabot metadata id: metadata - uses: dependabot/fetch-metadata@8348ea7f5d949b08c7f125a44b569c9626b05db3 + uses: dependabot/fetch-metadata@0fb21704c18a42ce5aa8d720ea4b912f5e6babef - name: Check ClearlyDefined if: ${{steps.metadata.outputs.package-ecosystem == 'nuget'}} From ce342f447cfbe0e9307bcb60fe90251c586ab37d Mon Sep 17 00:00:00 2001 From: Rich Lander Date: Fri, 22 Mar 2024 16:08:12 -0700 Subject: [PATCH 6/6] Update EOL versions (#6280) --- eng/helix/Helix.proj | 26 +++++++++---------- eng/pipelines/templates/pipeline-template.yml | 4 +-- 2 files changed, 15 insertions(+), 15 deletions(-) diff --git a/eng/helix/Helix.proj b/eng/helix/Helix.proj index 45b27ab20f6..fa30ea666a2 100644 --- a/eng/helix/Helix.proj +++ b/eng/helix/Helix.proj @@ -58,40 +58,40 @@ - - Debian 11 $(HelixArchitecture) $(HelixConfiguration) + Debian 12 $(HelixArchitecture) $(HelixConfiguration) - - Ubuntu 18.04 $(HelixArchitecture) $(HelixConfiguration) + Ubuntu 22.04 $(HelixArchitecture) $(HelixConfiguration) - - Debian 11 $(HelixArchitecture) $(HelixConfiguration) + Debian 12 $(HelixArchitecture) $(HelixConfiguration) - Mariner 2.0 $(HelixArchitecture) $(HelixConfiguration) - - Ubuntu 18.04 $(HelixArchitecture) $(HelixConfiguration) + Ubuntu 20.04 $(HelixArchitecture) $(HelixConfiguration) - - Alpine 3.15 $(HelixArchitecture) $(HelixConfiguration) + Alpine 3.17 $(HelixArchitecture) $(HelixConfiguration) - - Alpine 3.15 $(HelixArchitecture) $(HelixConfiguration) + Alpine 3.17 $(HelixArchitecture) $(HelixConfiguration) diff --git a/eng/pipelines/templates/pipeline-template.yml b/eng/pipelines/templates/pipeline-template.yml index 4c26e615186..2109bfb22bb 100644 --- a/eng/pipelines/templates/pipeline-template.yml +++ b/eng/pipelines/templates/pipeline-template.yml @@ -35,9 +35,9 @@ extends: build_linux_musl_arm64_cross: image: mcr.microsoft.com/dotnet-buildtools/prereqs:cbl-mariner-2.0-cross-arm64-alpine helix_linux_amd64: - image: mcr.microsoft.com/dotnet-buildtools/prereqs:ubuntu-18.04 + image: mcr.microsoft.com/dotnet-buildtools/prereqs:ubuntu-20.04 helix_linux_musl_amd64: - image: mcr.microsoft.com/dotnet-buildtools/prereqs:alpine-3.14-WithNode + image: mcr.microsoft.com/dotnet-buildtools/prereqs:alpine-3.19-WithNode pool: ${{ parameters.pool }}