Bump the major-minor-patch group with 7 updates

[dependabot]

⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.

---

Updated JsonSchema.Net from 7.3.4 to 9.2.1.

Release notes

Sourced from JsonSchema.Net's releases.

No release notes found for this version range.

Commits viewable in compare view.

Updated Microsoft.AspNetCore.Mvc.Testing from 10.0.7 to 10.0.8.

Release notes

Sourced from Microsoft.AspNetCore.Mvc.Testing's releases.

No release notes found for this version range.

Commits viewable in compare view.

Updated Microsoft.Extensions.DependencyInjection from 10.0.7 to 10.0.8.

Release notes

Sourced from Microsoft.Extensions.DependencyInjection's releases.

No release notes found for this version range.

Commits viewable in compare view.

Updated Microsoft.Extensions.Http from 10.0.7 to 10.0.8.

Release notes

Sourced from Microsoft.Extensions.Http's releases.

No release notes found for this version range.

Commits viewable in compare view.

Updated Microsoft.Extensions.Http.Resilience from 10.5.0 to 10.6.0.

Release notes

Sourced from Microsoft.Extensions.Http.Resilience's releases.

10.6.0

Version 10.6.0 stabilizes the response continuation token and background-response APIs in Microsoft.Extensions.AI.Abstractions. Most other AI work for May shipped in 10.5.1; this monthly release rolls those changes up alongside dependency updates and a small Resource Monitoring cleanup.

Experimental API Changes

Now Stable

• ResponseContinuationToken and background-response APIs are now stable (previously MEAI001) #​7512

What's Changed

AI

• Stabilize ResponseContinuationToken / background-response APIs #​7512 by @​jozkee (co-authored by @​Copilot)

Repository Infrastructure Updates

• Update version to 10.6.0 #​7458 by @​jeffhandley
• [main] Update dependencies from dotnet/arcade #​7451
• Bump follow-redirects from 1.15.11 to 1.16.0 in /src/Libraries/Microsoft.Extensions.AI.Evaluation.Reporting/TypeScript/azure-devops-report/tasks/PublishAIEvaluationReport #​7469
• Merge release/10.5 into main #​7470 by @​jeffhandley
• Bump microsoft.visualstudio.slngen.tool from 12.0.13 to 12.0.32 #​7484
• Bump postcss from 8.5.9 to 8.5.12 in /src/Libraries/Microsoft.Extensions.AI.Evaluation.Reporting/TypeScript #​7494
• Bump dotnet-reportgenerator-globaltool from 5.5.7 to 5.5.9 #​7504
• Rename release-notes skill to write-release-notes #​7511 by @​jeffhandley (co-authored by @​Copilot)

Acknowledgements

• @​wtgodbe @​tarekgh @​peterwald @​JeremyLikness @​eiriktsarpalis @​ericstj @​evgenyfedorov2 reviewed pull requests

Full Changelog: dotnet/extensions@v10.5.2...v10.6.0

10.5.2

This patch release ships a single fix to Microsoft.Extensions.VectorData.Abstractions, correcting StorageName resolution when external serialization is enabled. Microsoft.Extensions.VectorData.ConformanceTests, Microsoft.Extensions.AI.Abstractions, Microsoft.Extensions.AI, and Microsoft.Extensions.AI.OpenAI are published alongside it for version coherency — they contain no code changes from 10.5.1.

Packages in this release

Package	Version
Microsoft.Extensions.VectorData.Abstractions	10.5.2
Microsoft.Extensions.VectorData.ConformanceTests	10.5.2
Microsoft.Extensions.AI.Abstractions	10.5.2
Microsoft.Extensions.AI	10.5.2
Microsoft.Extensions.AI.OpenAI	10.5.2

What's Changed

Microsoft.Extensions.VectorData.Abstractions

• Minor fixes to MEVD.Abstractions: correct StorageName behavior when external serialization is enabled, and disable a warning for net462. (by @​roji in #​7475)

Full Changelog: dotnet/extensions@v10.5.1...v10.5.2

10.5.1

Version 10.5.1 of the Microsoft.Extensions.AI packages stabilizes CodeInterpreter, WebSearch, and ImageGeneration tool content types. The release adds new experimental tool search and OpenAI request policy hooks. And the OpenTelemetry gen-ai semantic conventions are updated to align with v1.41.

The 'aiagent-webapi' project template in Microsoft.Agents.AI.ProjectTemplates is updated to align with v1.3.0 of Agent Framework, updating the OpenTelemetry dependencies within the template projects as well.

Packages in this release

Package	Version
Microsoft.Extensions.AI	10.5.1
Microsoft.Extensions.AI.Abstractions	10.5.1
Microsoft.Extensions.AI.OpenAI	10.5.1
Microsoft.Extensions.AI.Templates	10.5.1-preview.3.26251.3
Microsoft.Agents.AI.ProjectTemplates	1.3.0-preview.1.26251.3

Experimental API Changes

Now Stable

The following types previously emitted the MEAI001 experimental diagnostic and are now stable.

• CodeInterpreter and WebSearch tool content types are now stable #​7493
  • CodeInterpreterToolCallContent
  • CodeInterpreterToolResultContent
  • WebSearchToolCallContent
  • WebSearchToolResultContent
• ImageGeneration tool content types and tool are now stable #​7476
  • ImageGenerationToolCallContent
  • ImageGenerationToolResultContent
  • HostedImageGenerationTool
  • ImageGenerationOptions
  • ImageGenerationResponseFormat (the Hosted enum value remains experimental)
  • IImageGenerator and the rest of the image generation infrastructure also remain experimental

New Experimental APIs

The following new APIs emit the MEAI001 experimental diagnostic.

• New experimental API: HostedToolSearchTool with DeferredTools for tool-search-driven deferred tool loading #​7471
• New experimental API: OpenAIRequestPolicies extension hook for appending System.ClientModel.PipelinePolicy instances to outgoing OpenAI requests #​7495

Breaking Changes to Experimental APIs

• WebSearchToolResultContent.Results was renamed to Outputs as part of the stabilization in #​7493, aligning with CodeInterpreterToolResultContent.Outputs. The original Results property was included in version 10.4.0 and 10.5.0; this is a binary breaking change and consumers need to update to consume the updated property.

  WebSearchToolResultContent content = ...;
  - IList<AIContent>? items = content.Results;
  + IList<AIContent>? items = content.Outputs;

... (truncated)

Commits viewable in compare view.

Updated Microsoft.Extensions.Logging.Abstractions from 10.0.7 to 10.0.8.

Release notes

Sourced from Microsoft.Extensions.Logging.Abstractions's releases.

No release notes found for this version range.

Commits viewable in compare view.

Updated System.Text.Json from 10.0.7 to 10.0.8.

Release notes

Sourced from System.Text.Json's releases.

No release notes found for this version range.

Commits viewable in compare view.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

[github-actions]

Dependency Review

The following issues were found:

• ✅ 0 vulnerable package(s)
• ✅ 0 package(s) with incompatible licenses
• ✅ 0 package(s) with invalid SPDX license definitions
• ⚠️ 80 package(s) with unknown licenses.

See the Details below.

License Issues

source/AAS.TwinEngine.DataEngine/AAS.TwinEngine.DataEngine.csproj

Package	Version	License	Issue Type
JsonSchema.Net	9.2.1	Null	Unknown License
Microsoft.Extensions.AmbientMetadata.Application	10.6.0	Null	Unknown License
Microsoft.Extensions.Compliance.Abstractions	10.6.0	Null	Unknown License
Microsoft.Extensions.DependencyInjection	10.0.8	Null	Unknown License
Microsoft.Extensions.DependencyInjection.AutoActivation	10.6.0	Null	Unknown License
Microsoft.Extensions.Diagnostics.ExceptionSummarization	10.6.0	Null	Unknown License
Microsoft.Extensions.Http.Diagnostics	10.6.0	Null	Unknown License
Microsoft.Extensions.Http.Resilience	10.6.0	Null	Unknown License
Microsoft.Extensions.Resilience	10.6.0	Null	Unknown License
Microsoft.Extensions.Telemetry	10.6.0	Null	Unknown License
Microsoft.Extensions.Telemetry.Abstractions	10.6.0	Null	Unknown License
System.Text.Json	10.0.8	Null	Unknown License
Humanizer.Core	3.0.10	Null	Unknown License

source/AAS.TwinEngine.Plugin.TestPlugin.PlaywrightTests/AAS.TwinEngine.Plugin.TestPlugin.PlaywrightTests.csproj

Package	Version	License	Issue Type
Microsoft.AspNetCore.Mvc.Testing	10.0.8	Null	Unknown License
Microsoft.AspNetCore.TestHost	10.0.8	Null	Unknown License
Microsoft.Extensions.Configuration	10.0.8	Null	Unknown License
Microsoft.Extensions.Configuration.Abstractions	10.0.8	Null	Unknown License
Microsoft.Extensions.Configuration.Binder	10.0.8	Null	Unknown License
Microsoft.Extensions.Configuration.CommandLine	10.0.8	Null	Unknown License
Microsoft.Extensions.Configuration.EnvironmentVariables	10.0.8	Null	Unknown License
Microsoft.Extensions.Configuration.FileExtensions	10.0.8	Null	Unknown License
Microsoft.Extensions.Configuration.Json	10.0.8	Null	Unknown License
Microsoft.Extensions.Configuration.UserSecrets	10.0.8	Null	Unknown License
Microsoft.Extensions.DependencyInjection	10.0.8	Null	Unknown License
Microsoft.Extensions.DependencyInjection.Abstractions	10.0.8	Null	Unknown License
Microsoft.Extensions.DependencyModel	10.0.8	Null	Unknown License
Microsoft.Extensions.Diagnostics	10.0.8	Null	Unknown License
Microsoft.Extensions.Diagnostics.Abstractions	10.0.8	Null	Unknown License
Microsoft.Extensions.FileProviders.Abstractions	10.0.8	Null	Unknown License
Microsoft.Extensions.FileProviders.Physical	10.0.8	Null	Unknown License
Microsoft.Extensions.FileSystemGlobbing	10.0.8	Null	Unknown License
Microsoft.Extensions.Hosting	10.0.8	Null	Unknown License
Microsoft.Extensions.Hosting.Abstractions	10.0.8	Null	Unknown License
Microsoft.Extensions.Logging	10.0.8	Null	Unknown License
Microsoft.Extensions.Logging.Abstractions	10.0.8	Null	Unknown License
Microsoft.Extensions.Logging.Configuration	10.0.8	Null	Unknown License
Microsoft.Extensions.Logging.Console	10.0.8	Null	Unknown License
Microsoft.Extensions.Logging.Debug	10.0.8	Null	Unknown License
Microsoft.Extensions.Logging.EventLog	10.0.8	Null	Unknown License
Microsoft.Extensions.Logging.EventSource	10.0.8	Null	Unknown License
Microsoft.Extensions.Options	10.0.8	Null	Unknown License
Microsoft.Extensions.Options.ConfigurationExtensions	10.0.8	Null	Unknown License
Microsoft.Extensions.Primitives	10.0.8	Null	Unknown License
System.Diagnostics.EventLog	10.0.8	Null	Unknown License

source/AAS.TwinEngine.Plugin.TestPlugin.UnitTests/AAS.TwinEngine.Plugin.TestPlugin.UnitTests.csproj

Package	Version	License	Issue Type
Microsoft.Extensions.DependencyInjection.Abstractions	10.0.8	Null	Unknown License
Microsoft.Extensions.Logging.Abstractions	10.0.8	Null	Unknown License

source/AAS.TwinEngine.Plugin.TestPlugin/AAS.TwinEngine.Plugin.TestPlugin.csproj

Package	Version	License	Issue Type
JsonSchema.Net	9.2.1	Null	Unknown License
Microsoft.Extensions.DependencyInjection	10.0.8	Null	Unknown License
Humanizer.Core	3.0.10	Null	Unknown License

source/AAS.TwinEngine.DataEngine.ModuleTests/AAS.TwinEngine.DataEngine.ModuleTests.csproj

Package	Version	License	Issue Type
Microsoft.AspNetCore.Mvc.Testing	10.0.8	Null	Unknown License
Microsoft.AspNetCore.TestHost	10.0.8	Null	Unknown License
Microsoft.Extensions.Configuration	10.0.8	Null	Unknown License
Microsoft.Extensions.Configuration.Abstractions	10.0.8	Null	Unknown License
Microsoft.Extensions.Configuration.Binder	10.0.8	Null	Unknown License
Microsoft.Extensions.Configuration.CommandLine	10.0.8	Null	Unknown License
Microsoft.Extensions.Configuration.EnvironmentVariables	10.0.8	Null	Unknown License
Microsoft.Extensions.Configuration.FileExtensions	10.0.8	Null	Unknown License
Microsoft.Extensions.Configuration.Json	10.0.8	Null	Unknown License
Microsoft.Extensions.Configuration.UserSecrets	10.0.8	Null	Unknown License
Microsoft.Extensions.DependencyInjection	10.0.8	Null	Unknown License
Microsoft.Extensions.DependencyInjection.Abstractions	10.0.8	Null	Unknown License
Microsoft.Extensions.DependencyModel	10.0.8	Null	Unknown License
Microsoft.Extensions.Diagnostics	10.0.8	Null	Unknown License
Microsoft.Extensions.Diagnostics.Abstractions	10.0.8	Null	Unknown License
Microsoft.Extensions.FileProviders.Abstractions	10.0.8	Null	Unknown License
Microsoft.Extensions.FileProviders.Physical	10.0.8	Null	Unknown License
Microsoft.Extensions.FileSystemGlobbing	10.0.8	Null	Unknown License
Microsoft.Extensions.Hosting	10.0.8	Null	Unknown License
Microsoft.Extensions.Hosting.Abstractions	10.0.8	Null	Unknown License
Microsoft.Extensions.Logging	10.0.8	Null	Unknown License
Microsoft.Extensions.Logging.Abstractions	10.0.8	Null	Unknown License
Microsoft.Extensions.Logging.Configuration	10.0.8	Null	Unknown License
Microsoft.Extensions.Logging.Console	10.0.8	Null	Unknown License
Microsoft.Extensions.Logging.Debug	10.0.8	Null	Unknown License
Microsoft.Extensions.Logging.EventLog	10.0.8	Null	Unknown License
Microsoft.Extensions.Logging.EventSource	10.0.8	Null	Unknown License
Microsoft.Extensions.Options	10.0.8	Null	Unknown License
Microsoft.Extensions.Options.ConfigurationExtensions	10.0.8	Null	Unknown License
Microsoft.Extensions.Primitives	10.0.8	Null	Unknown License
System.Diagnostics.EventLog	10.0.8	Null	Unknown License

Allowed Licenses:

Apache-1.0, Apache-1.1, Apache-2.0, BSL-1.0, BSD-1-Clause, BSD-2-Clause, BSD-2-Clause-FreeBSD, BSD-2-Clause-NetBSD, BSD-3-Clause, BSD-3-Clause-Clear, BSD-3-Clause-No-Nuclear-License, BSD-3-Clause-No-Nuclear-License-2014, BSD-3-Clause-No-Nuclear-Warranty, BSD-3-Clause-Open-MPI, BSD-4-Clause, BSD-Protection, BSD-Source-Code, BSD-3-Clause-Attribution, 0BSD, BSD-2-Clause-Patent, BSD-4-Clause-UC, MIT-CMU, CC-BY-3.0, CC-BY-SA-1.0, CC-BY-SA-2.0, CC-BY-SA-2.5, CC-BY-SA-3.0, CC-BY-SA-4.0, CC0-1.0, WTFPL, MIT-enna, MIT-feh, ISC, JSON, BSD-3-Clause-LBNL, MITNFA, MIT, MIT-0, UPL-1.0, NCSA, X11, Xerox, BlueOak-1.0.0, CC-BY-4.0, MS-PL, PostgreSQL, Python-2.0, SSPL-1.0, OFL-1.1, Unlicense, Unicode-DFS-2016, Unicode-3.0

Excluded from license check:

pkg:nuget/AasCore.Aas3_0, pkg:nuget/AasCore.Aas3.Package

OpenSSF Scorecard

Scorecard details

Package	Version	Score	Details
nuget/Humanizer.Core	3.0.10	🟢 5.2	Details Check Score Reason Code-Review 🟢 9 Found 28/30 approved changesets -- score normalized to 9 Packaging ⚠️ -1 packaging workflow not detected Maintained 🟢 10 30 commit(s) and 5 issue activity found in the last 90 days -- score normalized to 10 Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 License 🟢 9 license file detected Fuzzing ⚠️ 0 project is not fuzzed Security-Policy ⚠️ 0 security policy file not detected Branch-Protection ⚠️ 3 branch protection is not maximal on development and all release branches Signed-Releases ⚠️ 0 Project has not signed or included provenance with any releases. SAST 🟢 10 SAST tool is run on all commits
nuget/Json.More.Net	3.0.1	Unknown	Unknown
nuget/JsonPointer.Net	7.0.1	Unknown	Unknown
nuget/JsonSchema.Net	9.2.1	Unknown	Unknown
nuget/Microsoft.Extensions.AmbientMetadata.Application	10.6.0	🟢 6.7	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed Maintained 🟢 10 30 commit(s) and 14 issue activity found in the last 90 days -- score normalized to 10 Security-Policy 🟢 10 security policy file detected Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Binary-Artifacts 🟢 10 no binaries found in the repo Branch-Protection 🟢 5 branch protection is not maximal on development and all release branches Signed-Releases ⚠️ -1 no releases found Pinned-Dependencies 🟢 9 dependency not pinned by hash detected -- score normalized to 9 Fuzzing ⚠️ 0 project is not fuzzed SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0
nuget/Microsoft.Extensions.Compliance.Abstractions	10.6.0	🟢 6.7	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed Maintained 🟢 10 30 commit(s) and 14 issue activity found in the last 90 days -- score normalized to 10 Security-Policy 🟢 10 security policy file detected Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Binary-Artifacts 🟢 10 no binaries found in the repo Branch-Protection 🟢 5 branch protection is not maximal on development and all release branches Signed-Releases ⚠️ -1 no releases found Pinned-Dependencies 🟢 9 dependency not pinned by hash detected -- score normalized to 9 Fuzzing ⚠️ 0 project is not fuzzed SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0
nuget/Microsoft.Extensions.DependencyInjection	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.DependencyInjection.AutoActivation	10.6.0	🟢 6.7	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed Maintained 🟢 10 30 commit(s) and 14 issue activity found in the last 90 days -- score normalized to 10 Security-Policy 🟢 10 security policy file detected Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Binary-Artifacts 🟢 10 no binaries found in the repo Branch-Protection 🟢 5 branch protection is not maximal on development and all release branches Signed-Releases ⚠️ -1 no releases found Pinned-Dependencies 🟢 9 dependency not pinned by hash detected -- score normalized to 9 Fuzzing ⚠️ 0 project is not fuzzed SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0
nuget/Microsoft.Extensions.Diagnostics.ExceptionSummarization	10.6.0	🟢 6.7	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed Maintained 🟢 10 30 commit(s) and 14 issue activity found in the last 90 days -- score normalized to 10 Security-Policy 🟢 10 security policy file detected Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Binary-Artifacts 🟢 10 no binaries found in the repo Branch-Protection 🟢 5 branch protection is not maximal on development and all release branches Signed-Releases ⚠️ -1 no releases found Pinned-Dependencies 🟢 9 dependency not pinned by hash detected -- score normalized to 9 Fuzzing ⚠️ 0 project is not fuzzed SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0
nuget/Microsoft.Extensions.Http	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.Http.Diagnostics	10.6.0	🟢 6.7	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed Maintained 🟢 10 30 commit(s) and 14 issue activity found in the last 90 days -- score normalized to 10 Security-Policy 🟢 10 security policy file detected Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Binary-Artifacts 🟢 10 no binaries found in the repo Branch-Protection 🟢 5 branch protection is not maximal on development and all release branches Signed-Releases ⚠️ -1 no releases found Pinned-Dependencies 🟢 9 dependency not pinned by hash detected -- score normalized to 9 Fuzzing ⚠️ 0 project is not fuzzed SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0
nuget/Microsoft.Extensions.Http.Resilience	10.6.0	🟢 6.7	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed Maintained 🟢 10 30 commit(s) and 14 issue activity found in the last 90 days -- score normalized to 10 Security-Policy 🟢 10 security policy file detected Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Binary-Artifacts 🟢 10 no binaries found in the repo Branch-Protection 🟢 5 branch protection is not maximal on development and all release branches Signed-Releases ⚠️ -1 no releases found Pinned-Dependencies 🟢 9 dependency not pinned by hash detected -- score normalized to 9 Fuzzing ⚠️ 0 project is not fuzzed SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0
nuget/Microsoft.Extensions.Resilience	10.6.0	🟢 6.7	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed Maintained 🟢 10 30 commit(s) and 14 issue activity found in the last 90 days -- score normalized to 10 Security-Policy 🟢 10 security policy file detected Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Binary-Artifacts 🟢 10 no binaries found in the repo Branch-Protection 🟢 5 branch protection is not maximal on development and all release branches Signed-Releases ⚠️ -1 no releases found Pinned-Dependencies 🟢 9 dependency not pinned by hash detected -- score normalized to 9 Fuzzing ⚠️ 0 project is not fuzzed SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0
nuget/Microsoft.Extensions.Telemetry	10.6.0	🟢 6.7	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed Maintained 🟢 10 30 commit(s) and 14 issue activity found in the last 90 days -- score normalized to 10 Security-Policy 🟢 10 security policy file detected Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Binary-Artifacts 🟢 10 no binaries found in the repo Branch-Protection 🟢 5 branch protection is not maximal on development and all release branches Signed-Releases ⚠️ -1 no releases found Pinned-Dependencies 🟢 9 dependency not pinned by hash detected -- score normalized to 9 Fuzzing ⚠️ 0 project is not fuzzed SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0
nuget/Microsoft.Extensions.Telemetry.Abstractions	10.6.0	🟢 6.7	Details Check Score Reason Code-Review 🟢 10 all changesets reviewed Maintained 🟢 10 30 commit(s) and 14 issue activity found in the last 90 days -- score normalized to 10 Security-Policy 🟢 10 security policy file detected Packaging ⚠️ -1 packaging workflow not detected Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Binary-Artifacts 🟢 10 no binaries found in the repo Branch-Protection 🟢 5 branch protection is not maximal on development and all release branches Signed-Releases ⚠️ -1 no releases found Pinned-Dependencies 🟢 9 dependency not pinned by hash detected -- score normalized to 9 Fuzzing ⚠️ 0 project is not fuzzed SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0
nuget/System.Text.Json	10.0.8	Unknown	Unknown
nuget/Microsoft.AspNetCore.Mvc.Testing	10.0.8	Unknown	Unknown
nuget/Microsoft.AspNetCore.TestHost	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.Configuration	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.Configuration.Abstractions	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.Configuration.Binder	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.Configuration.CommandLine	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.Configuration.EnvironmentVariables	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.Configuration.FileExtensions	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.Configuration.Json	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.Configuration.UserSecrets	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.DependencyInjection	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.DependencyInjection.Abstractions	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.DependencyModel	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.Diagnostics	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.Diagnostics.Abstractions	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.FileProviders.Abstractions	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.FileProviders.Physical	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.FileSystemGlobbing	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.Hosting	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.Hosting.Abstractions	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.Logging	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.Logging.Abstractions	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.Logging.Configuration	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.Logging.Console	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.Logging.Debug	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.Logging.EventLog	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.Logging.EventSource	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.Options	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.Options.ConfigurationExtensions	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.Primitives	10.0.8	Unknown	Unknown
nuget/System.Diagnostics.EventLog	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.DependencyInjection.Abstractions	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.Logging.Abstractions	10.0.8	Unknown	Unknown
nuget/Humanizer.Core	3.0.10	🟢 5.2	Details Check Score Reason Code-Review 🟢 9 Found 28/30 approved changesets -- score normalized to 9 Packaging ⚠️ -1 packaging workflow not detected Maintained 🟢 10 30 commit(s) and 5 issue activity found in the last 90 days -- score normalized to 10 Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Token-Permissions ⚠️ 0 detected GitHub workflow tokens with excessive permissions CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected Binary-Artifacts 🟢 10 no binaries found in the repo Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 License 🟢 9 license file detected Fuzzing ⚠️ 0 project is not fuzzed Security-Policy ⚠️ 0 security policy file not detected Branch-Protection ⚠️ 3 branch protection is not maximal on development and all release branches Signed-Releases ⚠️ 0 Project has not signed or included provenance with any releases. SAST 🟢 10 SAST tool is run on all commits
nuget/Json.More.Net	3.0.1	Unknown	Unknown
nuget/JsonPointer.Net	7.0.1	Unknown	Unknown
nuget/JsonSchema.Net	9.2.1	Unknown	Unknown
nuget/Microsoft.Extensions.DependencyInjection	10.0.8	Unknown	Unknown
nuget/Microsoft.AspNetCore.Mvc.Testing	10.0.8	Unknown	Unknown
nuget/Microsoft.AspNetCore.TestHost	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.Configuration	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.Configuration.Abstractions	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.Configuration.Binder	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.Configuration.CommandLine	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.Configuration.EnvironmentVariables	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.Configuration.FileExtensions	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.Configuration.Json	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.Configuration.UserSecrets	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.DependencyInjection	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.DependencyInjection.Abstractions	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.DependencyModel	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.Diagnostics	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.Diagnostics.Abstractions	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.FileProviders.Abstractions	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.FileProviders.Physical	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.FileSystemGlobbing	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.Hosting	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.Hosting.Abstractions	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.Logging	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.Logging.Abstractions	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.Logging.Configuration	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.Logging.Console	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.Logging.Debug	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.Logging.EventLog	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.Logging.EventSource	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.Options	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.Options.ConfigurationExtensions	10.0.8	Unknown	Unknown
nuget/Microsoft.Extensions.Primitives	10.0.8	Unknown	Unknown
nuget/System.Diagnostics.EventLog	10.0.8	Unknown	Unknown

Scanned Files

• source/AAS.TwinEngine.DataEngine.ModuleTests/AAS.TwinEngine.DataEngine.ModuleTests.csproj
• source/AAS.TwinEngine.DataEngine/AAS.TwinEngine.DataEngine.csproj
• source/AAS.TwinEngine.Plugin.TestPlugin.PlaywrightTests/AAS.TwinEngine.Plugin.TestPlugin.PlaywrightTests.csproj
• source/AAS.TwinEngine.Plugin.TestPlugin.UnitTests/AAS.TwinEngine.Plugin.TestPlugin.UnitTests.csproj
• source/AAS.TwinEngine.Plugin.TestPlugin/AAS.TwinEngine.Plugin.TestPlugin.csproj

[mm-psy]

@dependabot recreate

[mm-psy]

This PR looks broken. There's already a new one. #117

[dependabot]

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml