diff --git a/.config/dotnet-tools.json b/.config/dotnet-tools.json
index 0eae3250..79ad7dda 100644
--- a/.config/dotnet-tools.json
+++ b/.config/dotnet-tools.json
@@ -3,7 +3,7 @@
"isRoot": true,
"tools": {
"powershell": {
- "version": "7.5.1",
+ "version": "7.5.2",
"commands": [
"pwsh"
],
diff --git a/.devcontainer/Dockerfile b/.devcontainer/Dockerfile
index 938b19f8..f06bc4ca 100644
--- a/.devcontainer/Dockerfile
+++ b/.devcontainer/Dockerfile
@@ -1,5 +1,5 @@
# Refer to https://hub.docker.com/_/microsoft-dotnet-sdk for available versions
-FROM mcr.microsoft.com/dotnet/sdk:9.0.300-noble@sha256:9f7bd4d010026e15a57d9cf876f2f7d08c3eeed6a0ea987b8c5ba8c75e68e948
+FROM mcr.microsoft.com/dotnet/sdk:9.0.301-noble@sha256:4fd7d3e5aeb6cfb75e923a54cdb0b6e858b27ad3b517837917c57c2e632b5694
# Installing mono makes `dotnet test` work without errors even for net472.
# But installing it takes a long time, so it's excluded by default.
diff --git a/.github/workflows/copilot-setup-steps.yml b/.github/workflows/copilot-setup-steps.yml
new file mode 100644
index 00000000..053f56e9
--- /dev/null
+++ b/.github/workflows/copilot-setup-steps.yml
@@ -0,0 +1,41 @@
+name: 💪🏼 Copilot Setup Steps
+
+# Automatically run the setup steps when they are changed to allow for easy validation, and
+# allow manual testing through the repository's "Actions" tab
+on:
+ workflow_dispatch:
+ push:
+ branches:
+ - main
+ paths:
+ - .github/workflows/copilot-setup-steps.yml
+ pull_request:
+ paths:
+ - .github/workflows/copilot-setup-steps.yml
+
+jobs:
+ # The job MUST be called `copilot-setup-steps` or it will not be picked up by Copilot.
+ copilot-setup-steps:
+ runs-on: ubuntu-latest
+ # Set the permissions to the lowest permissions possible needed for your steps.
+ # Copilot will be given its own token for its operations.
+ permissions:
+ # If you want to clone the repository as part of your setup steps, for example to install dependencies, you'll need the `contents: read` permission. If you don't clone the repository in your setup steps, Copilot will do this for you automatically after the steps complete.
+ contents: read
+
+ # You can define any steps you want, and they will run before the agent starts.
+ # If you do not check out your code, Copilot will do this for you.
+ steps:
+ - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4
+ with:
+ fetch-depth: 0 # avoid shallow clone so nbgv can do its work.
+ - name: ⚙ Install prerequisites
+ run: |
+ ./init.ps1 -UpgradePrerequisites -NoNuGetCredProvider
+ dotnet --info
+
+ # Print mono version if it is present.
+ if (Get-Command mono -ErrorAction SilentlyContinue) {
+ mono --version
+ }
+ shell: pwsh
diff --git a/.github/workflows/docs_validate.yml b/.github/workflows/docs_validate.yml
index 7eb7420f..5371e906 100644
--- a/.github/workflows/docs_validate.yml
+++ b/.github/workflows/docs_validate.yml
@@ -17,7 +17,7 @@ jobs:
with:
fetch-depth: 0 # avoid shallow clone so nbgv can do its work.
- name: 🔗 Markup Link Checker (mlc)
- uses: becheran/mlc@c925f90a9a25e16e4c4bfa29058f6f9ffa9f0d8c # v0.21.0
+ uses: becheran/mlc@88c9db09b8dabab813a2edd13f955b36aa73657a # v0.22.0
with:
args: --do-not-warn-for-redirect-to https://learn.microsoft.com*,https://dotnet.microsoft.com/*,https://dev.azure.com/*,https://app.codecov.io/* -p docfx -i https://aka.ms/onboardsupport,https://aka.ms/spot,https://msrc.microsoft.com/*,https://www.microsoft.com/msrc*,https://microsoft.com/msrc*,https://dev.azure.com/devdiv/*
- name: ⚙ Install prerequisites
diff --git a/Directory.Build.props b/Directory.Build.props
index 5b758bfd..c27e7873 100644
--- a/Directory.Build.props
+++ b/Directory.Build.props
@@ -20,8 +20,7 @@
true
-
- false
+ true
$(MSBuildThisFileDirectory)
diff --git a/Directory.Packages.props b/Directory.Packages.props
index 60b8f46c..12c289cb 100644
--- a/Directory.Packages.props
+++ b/Directory.Packages.props
@@ -5,7 +5,7 @@
true
true
- 2.0.187
+ 2.0.198
@@ -19,14 +19,14 @@
-
-
+
+
-
-
+
+
diff --git a/azure-pipelines/build.yml b/azure-pipelines/build.yml
index 0744d54c..c8c86726 100644
--- a/azure-pipelines/build.yml
+++ b/azure-pipelines/build.yml
@@ -118,6 +118,7 @@ jobs:
zipSources: false
${{ if parameters.RealSign }}:
signType: real
+ signWithProd: true
${{ else }}:
signType: test
sbom:
@@ -140,6 +141,9 @@ jobs:
- ${{ if parameters.EnableOptProf }}:
- powershell: Write-Host "##vso[task.setvariable variable=PROFILINGINPUTSDROPNAME]$(tools/variables/ProfilingInputsDropName.ps1)"
displayName: ⚙ Set ProfilingInputsDropName for optprof
+ sdl:
+ binskim:
+ analyzeTargetGlob: $(Build.ArtifactStagingDirectory)\symbols-Windows\**
outputParentDirectory: $(Build.ArtifactStagingDirectory)
outputs:
@@ -221,6 +225,7 @@ jobs:
signing:
enabled: false # enable when building unique artifacts on this agent that must be signed
signType: real
+ signWithProd: true
outputParentDirectory: $(Build.ArtifactStagingDirectory)
outputs:
- ${{ each artifact_name in parameters.artifact_names }}:
@@ -255,6 +260,7 @@ jobs:
signing:
enabled: false # enable when building unique artifacts on this agent that must be signed
signType: real
+ signWithProd: true
outputParentDirectory: $(Build.ArtifactStagingDirectory)
outputs:
- ${{ each artifact_name in parameters.artifact_names }}:
diff --git a/azure-pipelines/microbuild.before.yml b/azure-pipelines/microbuild.before.yml
index 05acd319..25071536 100644
--- a/azure-pipelines/microbuild.before.yml
+++ b/azure-pipelines/microbuild.before.yml
@@ -42,7 +42,7 @@ steps:
- task: MicroBuildSigningPlugin@4
inputs:
- signType: Real
+ signType: Test
zipSources: false
displayName: 🔧 Install MicroBuild Signing Plugin
diff --git a/global.json b/global.json
index 3d0b9e2d..a4a4b8c4 100644
--- a/global.json
+++ b/global.json
@@ -1,6 +1,6 @@
{
"sdk": {
- "version": "9.0.300",
+ "version": "9.0.301",
"rollForward": "patch",
"allowPrerelease": false
},