Skip to content

Update all dependencies#20

Merged
ronaldbosma merged 1 commit intomainfrom
renovate/all
Feb 21, 2026
Merged

Update all dependencies#20
ronaldbosma merged 1 commit intomainfrom
renovate/all

Conversation

@ronaldbosma
Copy link
Owner

@ronaldbosma ronaldbosma commented Feb 21, 2026

This PR contains the following updates:

Package Type Update Change
MSTest.Sdk msbuild-sdk minor 4.0.24.1.0
Microsoft.Extensions.Configuration (source) nuget patch 10.0.210.0.3
Microsoft.Extensions.Configuration.EnvironmentVariables (source) nuget patch 10.0.210.0.3
Microsoft.Extensions.Configuration.FileExtensions (source) nuget patch 10.0.210.0.3
Microsoft.Identity.Client (source) nuget minor 4.81.04.82.1

Release Notes

microsoft/testfx (MSTest.Sdk)

v4.1.0

See the release notes here

AzureAD/microsoft-authentication-library-for-dotnet (Microsoft.Identity.Client)

v4.82.1

Compare Source

======

Bug Fixes
  • Remove experimental flag requirement from IAuthenticationOperation #​5699
  • Add security warning to ICustomWebUi documentation #​5704
Changes
  • Adds support for implicit mTLS (Mutual TLS) transport for client assertion delegates #​5670

v4.82.0

Compare Source

======

Highlights

This release expands extensibility for confidential-client authentication (certificates + client assertions), adds additional sovereign cloud environments, and hardens security-sensitive flows (mTLS PoP and system browser auth) with clearer validation and safer defaults.

Features
  • Certificate-based confidential client extensibility: Introduced CertificateOptions and updated WithCertificate extensibility APIs to accept it, including support for passing sendX5C configuration through the options model. (#​5655)
  • Sovereign cloud support: Added instance discovery / authority validation support for Bleu (France), Delos (Germany), and GovSG (Singapore) cloud environments. (#​5671)
  • Client assertion customization: Added WithExtraClientAssertionClaims on AcquireTokenForClientParameterBuilder to enable supplying additional signed claims in client assertions (intended for advanced scenarios and higher-level libraries). (#​5650)
  • mTLS PoP guardrails: Added validation and explicit error handling when mTLS PoP is requested for unsupported environments and/or non-login.* hosts. (#​5684)
  • System browser hardening: Added response_mode=form_post support for the default system browser (loopback) flow. MSAL will enforce form_post and process the authorization response from POST data. (#​5678)
Changes
  • Key Attestation packaging rename: Microsoft.Identity.Client.MtlsPop renamed to Microsoft.Identity.Client.KeyAttestation (assembly/package naming update). (#​5653)

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

This PR has been generated by Renovate Bot.

@ronaldbosma ronaldbosma merged commit 5d5445a into main Feb 21, 2026
7 checks passed
@ronaldbosma ronaldbosma deleted the renovate/all branch February 21, 2026 17:36
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies renovate

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@ronaldbosma @renovate-bot