Chore: Bump Microsoft.Build.Utilities.Core and 5 others#997
Closed
dependabot[bot] wants to merge 1 commit into
Closed
Chore: Bump Microsoft.Build.Utilities.Core and 5 others#997dependabot[bot] wants to merge 1 commit into
dependabot[bot] wants to merge 1 commit into
Conversation
Bumps Microsoft.Build.Utilities.Core from 18.6.3 to 18.7.1 Bumps Microsoft.Extensions.DependencyModel from 9.0.16 to 9.0.17 Bumps System.Drawing.Common from 9.0.16 to 9.0.17 Bumps System.Reflection.Metadata from 10.0.8 to 10.0.9 Bumps System.Resources.Extensions from 9.0.16 to 9.0.17 Bumps System.Security.Permissions from 9.0.16 to 9.0.17 --- updated-dependencies: - dependency-name: Microsoft.Build.Utilities.Core dependency-version: 18.7.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: nuget-minor - dependency-name: Microsoft.Extensions.DependencyModel dependency-version: 9.0.17 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: nuget-minor - dependency-name: System.Drawing.Common dependency-version: 9.0.17 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: nuget-minor - dependency-name: System.Reflection.Metadata dependency-version: 10.0.9 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: nuget-minor - dependency-name: System.Resources.Extensions dependency-version: 9.0.17 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: nuget-minor - dependency-name: System.Security.Permissions dependency-version: 9.0.17 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: nuget-minor ... Signed-off-by: dependabot[bot] <support@github.com>
2 tasks
Contributor
|
Consolidated into #1000 along with the other open dependabot PRs (verified together with a local build + full test run). Closing in favor of that PR. |
Contributor
Author
|
This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests. To ignore these dependencies, configure ignore rules in dependabot.yml |
johnml1135
added a commit
that referenced
this pull request
Jul 8, 2026
Combines 5 open dependabot PRs into one branch so they build and test together instead of as 5 separate merges: #997, #984, #982, #981, #980. Included bumps: - Microsoft.Build.Utilities.Core 18.6.3 -> 18.7.1 (+5 others) (#997) - nuget-minor group (10 updates): System.Drawing.Common, System.Reflection.Metadata, System.Resources.Extensions, System.Security.Permissions -> 9.0.17/10.0.9; SilLcm/SilLibPalaso version refresh in Build/SilVersions.props (#984) - actions/checkout 6 -> 7 across all workflow files (#982) - actions/cache 5 -> 6 in copilot-setup-steps.yml (#981) - actions-minor group: 2 SHA-pinned action bumps in CI.yml and base-installer-cd.yml (#980) Also pulls in #979's fix for RealDataTestsBase resolving its scratch project directory via a per-machine shared path, which collided across git worktrees and was needed to get a clean local test run. Holds Microsoft.Extensions.DependencyModel at 9.0.16 instead of the 9.0.17 that #984 proposed: Directory.Packages.props has a long-standing comment warning that bumping this package breaks ICU initialization in the .NET Framework test host, and the full local test suite reproduced that exact failure (TypeInitializationException on Icu.NativeMethods, FileLoadException loading Microsoft.Extensions.DependencyModel) until this one package was reverted. Every other package in that group is kept at its bumped version. Verified with build.ps1 -BuildTests (0 errors/warnings) and test.ps1 using the same TestFilter as CI.yml (4298 tests, only 12 failures, all pre-existing local RenderBaselineTests/RenderBenchmark pixel-diff mismatches unrelated to this change).
johnml1135
added a commit
that referenced
this pull request
Jul 9, 2026
Combines 5 open dependabot PRs into one branch so they build and test together instead of as 5 separate merges: #997, #984, #982, #981, #980. Included bumps: - Microsoft.Build.Utilities.Core 18.6.3 -> 18.7.1 (+5 others) (#997) - nuget-minor group (10 updates): System.Drawing.Common, System.Reflection.Metadata, System.Resources.Extensions, System.Security.Permissions -> 9.0.17/10.0.9; SilLcm/SilLibPalaso version refresh in Build/SilVersions.props (#984) - actions/checkout 6 -> 7 across all workflow files (#982) - actions/cache 5 -> 6 in copilot-setup-steps.yml (#981) - actions-minor group: 2 SHA-pinned action bumps in CI.yml and base-installer-cd.yml (#980) Also pulls in #979's fix for RealDataTestsBase resolving its scratch project directory via a per-machine shared path, which collided across git worktrees and was needed to get a clean local test run. Holds Microsoft.Extensions.DependencyModel at 9.0.16 instead of the 9.0.17 that #984 proposed: Directory.Packages.props has a long-standing comment warning that bumping this package breaks ICU initialization in the .NET Framework test host, and the full local test suite reproduced that exact failure (TypeInitializationException on Icu.NativeMethods, FileLoadException loading Microsoft.Extensions.DependencyModel) until this one package was reverted. Every other package in that group is kept at its bumped version. Verified with build.ps1 -BuildTests (0 errors/warnings) and test.ps1 using the same TestFilter as CI.yml (4298 tests, only 12 failures, all pre-existing local RenderBaselineTests/RenderBenchmark pixel-diff mismatches unrelated to this change).
johnml1135
added a commit
that referenced
this pull request
Jul 9, 2026
Combines 5 open dependabot PRs into one branch so they build and test together instead of as 5 separate merges: #997, #984, #982, #981, #980. Included bumps: - Microsoft.Build.Utilities.Core 18.6.3 -> 18.7.1 (+5 others) (#997) - nuget-minor group (10 updates): System.Drawing.Common, System.Reflection.Metadata, System.Resources.Extensions, System.Security.Permissions -> 9.0.17/10.0.9; SilLcm/SilLibPalaso version refresh in Build/SilVersions.props (#984) - actions/checkout 6 -> 7 across all workflow files (#982) - actions/cache 5 -> 6 in copilot-setup-steps.yml (#981) - actions-minor group: 2 SHA-pinned action bumps in CI.yml and base-installer-cd.yml (#980) Also pulls in #979's fix for RealDataTestsBase resolving its scratch project directory via a per-machine shared path, which collided across git worktrees and was needed to get a clean local test run. Holds Microsoft.Extensions.DependencyModel at 9.0.16 instead of the 9.0.17 that #984 proposed: Directory.Packages.props has a long-standing comment warning that bumping this package breaks ICU initialization in the .NET Framework test host, and the full local test suite reproduced that exact failure (TypeInitializationException on Icu.NativeMethods, FileLoadException loading Microsoft.Extensions.DependencyModel) until this one package was reverted. Every other package in that group is kept at its bumped version. Verified with build.ps1 -BuildTests (0 errors/warnings) and test.ps1 using the same TestFilter as CI.yml (4298 tests, only 12 failures, all pre-existing local RenderBaselineTests/RenderBenchmark pixel-diff mismatches unrelated to this change).
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Updated Microsoft.Build.Utilities.Core from 18.6.3 to 18.7.1.
Release notes
Sourced from Microsoft.Build.Utilities.Core's releases.
18.7.1
What's Changed
... (truncated)
Commits viewable in compare view.
Updated Microsoft.Extensions.DependencyModel from 9.0.16 to 9.0.17.
Release notes
Sourced from Microsoft.Extensions.DependencyModel's releases.
9.0.17
Release
What's Changed
Full Changelog: dotnet/runtime@v9.0.16...v9.0.17
Commits viewable in compare view.
Updated System.Drawing.Common from 9.0.16 to 9.0.17.
Release notes
Sourced from System.Drawing.Common's releases.
No release notes found for this version range.
Commits viewable in compare view.
Updated System.Reflection.Metadata from 10.0.8 to 10.0.9.
Release notes
Sourced from System.Reflection.Metadata's releases.
No release notes found for this version range.
Commits viewable in compare view.
Updated System.Resources.Extensions from 9.0.16 to 9.0.17.
Release notes
Sourced from System.Resources.Extensions's releases.
9.0.17
Release
What's Changed
Full Changelog: dotnet/runtime@v9.0.16...v9.0.17
Commits viewable in compare view.
Updated System.Security.Permissions from 9.0.16 to 9.0.17.
Release notes
Sourced from System.Security.Permissions's releases.
9.0.17
Release
What's Changed
Full Changelog: dotnet/runtime@v9.0.16...v9.0.17
Commits viewable in compare view.
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore <dependency name> major versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)@dependabot ignore <dependency name> minor versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)@dependabot ignore <dependency name>will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)@dependabot unignore <dependency name>will remove all of the ignore conditions of the specified dependency@dependabot unignore <dependency name> <ignore condition>will remove the ignore condition of the specified dependency and ignore conditionsThis change is