Skip to content

Update .NET dependencies to latest versions and resolve security vulnerabilities #77

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
BenjaminMichaelis merged 2 commits into from
Sep 20, 2025
Merged

Update .NET dependencies to latest versions and resolve security vulnerabilities #77

BenjaminMichaelis merged 2 commits into from
Sep 20, 2025

Conversation

Copy link
Contributor

Copilot AI commented Sep 20, 2025
edited
Loading

This PR updates all .NET dependencies to their latest stable versions and resolves critical security vulnerabilities that were preventing the project from building.

Security Issues Resolved

The build was failing due to high severity vulnerabilities in transitive dependencies:

These vulnerabilities have been resolved by updating the MSTest packages which brought in secure versions of these dependencies.

Package Updates

Package Previous Updated Notes
Microsoft.NET.Test.Sdk 17.8.0 17.14.1 Latest stable version
MSTest.TestAdapter 1.3.2 3.10.4 Major version upgrade
MSTest.TestFramework 1.3.2 3.10.4 Major version upgrade
System.CodeDom 9.0.6 9.0.9 Latest patch version
Microsoft.SourceLink.GitHub 8.0.0 8.0.0 Already latest

Code Modernization

The MSTest package upgrades introduced stricter analyzers that flagged deprecated testing patterns. Updated the test code to use modern MSTest assertions:

  • Replaced [ExpectedException] attribute with Assert.ThrowsExactly<T>() method calls
  • Updated Assert.ThrowsException<T>() to Assert.ThrowsExactly<T>() for more precise exception testing

Also updated the C# language version from 10 to 12 to take advantage of newer language features while maintaining compatibility with the netstandard2.0 target framework.

Testing

  • All 32 tests continue to pass
  • Build succeeds on all target platforms
  • No regressions introduced
  • Security vulnerability warnings eliminated

The updates ensure the project uses current, secure dependencies while maintaining full backward compatibility.

💬 Share your feedback on Copilot coding agent for the chance to win a $200 gift card! Click here to start the survey.

@BenjaminMichaelis
Update .NET dependencies to latest versions
599f126 
Co-authored-by: BenjaminMichaelis <22186029+BenjaminMichaelis@users.noreply.github.com>
Copilot AI changed the title [WIP] Update .net dependencies Update .NET dependencies to latest versions and resolve security vulnerabilities Sep 20, 2025
@BenjaminMichaelis BenjaminMichaelis marked this pull request as ready for review September 20, 2025 16:54
@BenjaminMichaelis BenjaminMichaelis merged commit a6fdcc8 into main Sep 20, 2025
8 checks passed
@BenjaminMichaelis BenjaminMichaelis deleted the copilot/fix-f975c946-5bb3-40eb-9f9e-9efd22e08188 branch September 20, 2025 16:54
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@BenjaminMichaelis BenjaminMichaelis Awaiting requested review from BenjaminMichaelis

Assignees

@BenjaminMichaelis BenjaminMichaelis

Copilot code review Copilot

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@BenjaminMichaelis