Skip to content

.Net: Address vulnerable packages (+Update MsGraph for latest Major V5) #12962

Merged
rogerbarreto merged 3 commits into
microsoft:mainfrom
rogerbarreto:fix-vulnerable-packages
Aug 19, 2025
Merged

.Net: Address vulnerable packages (+Update MsGraph for latest Major V5) #12962
rogerbarreto merged 3 commits into
microsoft:mainfrom
rogerbarreto:fix-vulnerable-packages

Conversation

@rogerbarreto

Copy link
Copy Markdown
Member

Motivation and Context

This PR addresses a recent vulnerability warning received while working in the Semantic Kernel solution, limited to specific packages for Prompty, Milvus and Microsoft Graph Plugin.

As part of addressing the vulnerabilities was also necessary to upgrade the logic to use the newest packages from Microsoft.Graph library.

@rogerbarreto rogerbarreto self-assigned this Aug 18, 2025
@rogerbarreto rogerbarreto requested a review from a team as a code owner August 18, 2025 13:23
@moonbox3 moonbox3 added the .NET Issue or Pull requests regarding .NET code label Aug 18, 2025
@rogerbarreto rogerbarreto marked this pull request as draft August 18, 2025 13:25
@rogerbarreto rogerbarreto changed the title .Net: Address vulnerable packages (+Update MsGraph for latest Major V5) .Net: [WIP] Address vulnerable packages (+Update MsGraph for latest Major V5) Aug 18, 2025
@rogerbarreto rogerbarreto marked this pull request as ready for review August 19, 2025 16:02
@rogerbarreto rogerbarreto changed the title .Net: [WIP] Address vulnerable packages (+Update MsGraph for latest Major V5) .Net: Address vulnerable packages (+Update MsGraph for latest Major V5) Aug 19, 2025
@rogerbarreto rogerbarreto added this pull request to the merge queue Aug 19, 2025
Merged via the queue into microsoft:main with commit ca3c7d9 Aug 19, 2025
21 checks passed
@rogerbarreto rogerbarreto deleted the fix-vulnerable-packages branch August 19, 2025 19:29
jcruzmot-te pushed a commit to thousandeyes/aia-semantic-kernel that referenced this pull request Sep 15, 2025
…5) (microsoft#12962)

### Motivation and Context

This PR addresses a recent vulnerability warning received while working
in the Semantic Kernel solution, limited to specific packages for
Prompty, Milvus and Microsoft Graph Plugin.

As part of addressing the vulnerabilities was also necessary to upgrade
the logic to use the newest packages from Microsoft.Graph library.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

documentation .NET Issue or Pull requests regarding .NET code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

4 participants