Update All dependencies (major)

[renovate]

This PR contains the following updates:

Package	Change	Age	Confidence	Type	Update
Microsoft.AspNetCore.Authentication.JwtBearer (source)	9.0.7 -> 10.0.0			nuget	major
Microsoft.AspNetCore.Mvc.Testing (source)	9.0.7 -> 10.0.0			nuget	major
Microsoft.AspNetCore.OpenApi (source)	9.0.7 -> 10.0.0			nuget	major
Microsoft.Extensions.Configuration.Abstractions (source)	9.0.7 -> 10.0.0			nuget	major
Microsoft.Extensions.DependencyInjection.Abstractions (source)	9.0.7 -> 10.0.0			nuget	major
Microsoft.Extensions.Hosting.Abstractions (source)	9.0.7 -> 10.0.0			nuget	major
Microsoft.Extensions.Http.Polly (source)	9.0.7 -> 10.0.0			nuget	major
Microsoft.Extensions.Logging.Abstractions (source)	9.0.7 -> 10.0.0			nuget	major
Microsoft.Extensions.Options.ConfigurationExtensions (source)	9.0.7 -> 10.0.0			nuget	major
Microsoft.Identity.Web	3.11.0 -> 4.1.1			nuget	major
Microsoft.NET.Test.Sdk	17.14.1 -> 18.0.1			nuget	major
Npgsql	9.0.3 -> 10.0.0			nuget	major
Npgsql.OpenTelemetry	9.0.3 -> 10.0.0			nuget	major
Serilog.AspNetCore	9.0.0 -> 10.0.0			nuget	major
Serilog.Extensions.Hosting	9.0.0 -> 10.0.0			nuget	major
Swashbuckle.AspNetCore	9.0.3 -> 10.0.1			nuget	major
actions/checkout	v4 -> v6			action	major
actions/setup-dotnet	v4 -> v5			action	major
github/codeql-action	v3 -> v4			action	major

---

Release Notes

AzureAD/microsoft-identity-web (Microsoft.Identity.Web)

v4.1.1

Compare Source

Bug fixes

• Authority-only configuration parsing improvements: Early parsing of Authority into Instance/TenantId and defensive fallback in PrepareAuthorityInstanceForMsal. Behavior is backward compatible; Authority is still ignored when Instance/TenantId explicitly provided—now surfaced via a warning. See #​3612.

New features

• Added warning diagnostics for conflicting Authority vs Instance/TenantId: Emitting a single structured warning when both styles are provided. See #​3611.

Fundamentals

• Expanded authority test matrix: Coverage for AAD (v1/v2), B2C (/tfp/ normalization, policy path), CIAM (PreserveAuthority), query parameters, scheme-less forms, and conflict scenarios. See #​3610.

v4.1.0

Compare Source

=========

New features

• Migrate to .NET 10 GA. #​3449 and #​3590

Dependencies updates

• Bump MSAL.NET to version 4.79.2 and handle changes to deprecated WithExtraQueryParameters APIs. #​3583
• Update Microsoft.IdentityModel and Abstractions versions. #​3604
• Update coverlet.collector to 6.0.4. #​3587
• Update package validation baseline version to 4.0.0. #​3589
• Bump js-yaml from 4.1.0 to 4.1.1 in /tests/DevApps/SidecarAdapter/typescript. #​3595

Entra ID SDK sidecar

• Restrict hosts to localhost for sidecar. #​3579
• Update http file to match endpoints. #​3555
• Revise sidecar issue template for Entra ID. #​3577

Documentation

• Update README to include Entra SDK container info. #​3578

Fundamentals

• Include NET 9.0 in template-install-dependencies. #​3593
• Fix CodeQL alerts. #​3591
• Suppression file is needed. #​3592

v4.0.1

Compare Source

=========

Bugs fixes

• Correctly compute Application Key when credential usage fails. #​3487
• Fix bugs where agent user identities didn't work with non-default authentication schemes. #​3487

Fundamentals

• Update .net version to CG compliance #​3487

Entra ID SDK sidecar

• Configure Sidecar to default AllowWebApiToBeAuthorizedByACL to true as the container doesn't do authZ #​3487

v4.0.0

=========

Breaking Changes

Removed support for .NET 6.0 and .NET 7.0 - Microsoft Identity Web 4.0.0 no longer targets .NET 6.0 and .NET 7.0, following Microsoft's support lifecycle. The supported target frameworks are now .NET 8.0, .NET 9.0, .NET Framework 4.6.2, .NET Framework 4.7.2, and .NET Standard 2.0.

New features

• Various improvements to performance logging, authentication, and credential loading capabilities.
• Bumped MSAL.NET to 4.77.1
• Added credential description extensibility. For details, see #​3487
• Added a new CerticateObserverAction type: SuccessfullyUsed and support for multiple certificate observers for improved certificate lifecycle management and telemetry. See #​3505
• Add specification of OID (in addition to upn) when requesting an authorization header for Agent User Identity. See #​3513
• Added ClaimsPrincipal and ClaimsIdentity extension methods for agent identity detection in web APIs enabling developers to easily detect agent identities and retrieve parent agent blueprint from token claims. See #​3515
• Added MicrosoftIdentityMessageHandler for flexible HttpClient authentication. Provides composable alternative to DownstreamApi with per-request authentication configuration. Supports WWW-Authenticate challenge handling. See #​3503
• Support for multiple certificate observers. See #​3506
• The Microsoft.Identity.Web.Sidecar will provide a container solution for validation and token acquisition in any-language. See #​3524

Bug Fixes

• Fixed TokenAcquirerFactory null reference when AppContext.BaseDirectory is root path. See #​3443
• Fixed IDW10405 error when using managed identity with common tenant. See #​3415
• Removed hard dependency on IConfiguration in OidcIdpSignedAssertionLoader. See #​3414

Fundamentals

• Various improvements to .NET support and dependency optimizations.
• Added doc for Agent identities. See Agent identities
• Combined and fixed test collections. See #​3472
• Migrate repository agent rules from .clinerules to agents.md. See #​3475
• Add .NET 6.x setup step to dotnetcore.yml workflow, as the default build agents don't have it any longer. See #​3489
• Renamed NET 7 tests to ThreadingTests for framework independence. See #​3501

v3.14.1

=======

Bug fix

• Support client secrets with agent user identities. See #​3470 for details.

v3.14.0

=======

New features

• Support multi-tenant agent user identities. See #​3461 for details.
• Id Web now allows for passing of ExtraBodyParameters. See #​3463 for details.

v3.13.2

=======

Dependencies updates

• Updated MSAL.NET to version 4.76.0

v3.13.1

Compare Source

=======

Dependencies updates

• Microsoft.IdentityModel updated to version 8.14.0.

v3.13.0

Compare Source

=======

Dependencies updates

• Microsoft.IdentityModel updated to version 8.13.1.
• Microsoft.Abstractions updated to version 9.3.0 and using IAuthenticationSchemeInformationProvider from that library, deprecating the interface of the same name in Microsoft.Identity.Web (introduced in 3.12.0).

Bug fixes

• Fixed an issue with instantiation of TokenAcquirerFactory when AppContext.BaseDirectory is root path. See PR #​3443 for details.

Fundamentals

• Use cloud user in tests. See PR #​3441 and #​3442 for details.

v3.12.0

Compare Source

=======

Dependencies updates

• Updated MSAL to version 4.74.1 part of #​3398.

Bug fix

Reload certificates for all client credential based issues to solve the issue that when a bad certificate was installed on the machine and picked up, and subsequently rotated, a service restart was needed for the new certificate to be used. See issue #​3429 and PR #​3430

New features

• Include the thrown exception in CertificateChangeEventArg. See PR #​3428 for better supportabiliby.
• Support for Agent User identities. See PR #​3435

microsoft/vstest (Microsoft.NET.Test.Sdk)

v18.0.1

What's Changed

Fixing an issue with loading covrun64.dll on systems that have .NET 10 SDK installed: https://learn.microsoft.com/en-us/dotnet/core/compatibility/sdk/10.0/code-coverage-dynamic-native-instrumentation

• Disable DynamicNative instrumentation by default by @​nohwnd in #​15298
• Update MicrosoftInternalCodeCoveragePackageVersion to 18.0.6 by @​nohwnd in #​15312

Internal changes

• Update VersionPrefix to 18.0.1 by @​nohwnd in #​15301
• Update build tools to 17.8.43 by @​nohwnd in #​15305

Full Changelog: microsoft/vstest@v18.0.0...v18.0.1

v18.0.0

What's Changed

• Update reporting formatting by @​martincostello in #​15082
• Fix stack trace for Trace.Fail and Debug.Fail by @​nohwnd in #​15103
• Add documentation of environment variables by @​Copilot in #​15095
• IFrameworkHandle.LaunchProcessWithDebuggerAttached allows null for workingDirectory in signature but throws by @​Copilot in #​15091
• Add Dependabot configuration for .NET SDK updates by @​JamieMagee in #​15114
• Handle dotnet_root in testhost version aware way by @​nohwnd in #​15184
• Add magic bytes validation for Mach-O binaries in DotnetHostHelper by @​Copilot in #​15230
• using globbing pattern doesn't work on windows with forward slashes by @​Copilot in #​15088
• Remove tpv0 by @​nohwnd in #​15247
• Cache AssemblyName in ManagedNameHelper by @​Youssef1313 in #​15259
• Add ARM64 support to GetArchitectureForSource methods by @​Copilot in #​15278

Internal fixes and updates

• Fix formatting in two files by @​ViktorHofer in #​15047
• Build TestPlatform packages in VMR by @​ViktorHofer in #​15055
• Condition property on .NET FX MSBuild by @​jaredpar in #​15054
• Migrate to awesome assertions by @​nohwnd in #​15056
• Revert "Build TestPlatform packages in VMR" by @​ViktorHofer in #​15057
• Update package Category by @​ViktorHofer in #​15058
• Revert "Write props of tests into trx" by @​nohwnd in #​15080
• Error on unsupported tfms (#​15072) by @​nohwnd in #​15073
• Use policies from testfx to align by @​nohwnd in #​15085
• Update enable-auto-merge.yml by @​nohwnd in #​15102
• Revert ignoring environment test by @​Copilot in #​15094
• unignore tests by @​Copilot in #​15093
• Update MSTest by @​Youssef1313 in #​15108
• Bump dotnet-sdk from 9.0.106 to 9.0.301 by @​dependabot[bot] in #​15179
• Use Assert.Equals by @​nohwnd in #​15181
• Run VSTest tests with MTP by @​Youssef1313 in #​15079
• Use the standard sdk for architecture switch test by @​nohwnd in #​15188
• Remove CUIT (Coded UI Test) from NuGet packages and test projects by @​Copilot in #​15177
• dump-logs? by @​nohwnd in #​15187
• Moving to version 18 by @​nohwnd in #​15209
• Update fakes version by @​drognanar in #​15227
• Microsoft.Intellitrace.Core should be taken from nuget by @​nohwnd in #​15229
• Remove MSTest.Assert.Extensions by @​Youssef1313 in #​15178
• Sourcebuild fix by @​nohwnd in #​15239
• Set dotnet_root_ only when the architecture of dotnet in the path is the same by @​nohwnd in #​15250
• Remove fakes v1 from FakesUtilities by @​drognanar in #​15251
• Update fakes dependencies by @​drognanar in #​15254
• Do half the work in GetManagedName by @​Youssef1313 in #​15255
• check Vsix only when produced by @​nohwnd in #​15261
• Set dotnet_root_ always by @​nohwnd in #​15266
• Don't hardcode old vswhere version in global.json by @​akoeplinger in #​15267
• Revert dowgrade of fakes by @​nohwnd in #​15263
• Update VSSDK to version with code flow guard by @​nohwnd in #​15279
• Update Fakes to version with code flow guard by @​nohwnd in #​15273
• Add es-metadata.yml by @​Youssef1313 in #​15276
• Avoid iterator in TraitCollection.GetTraits by @​Youssef1313 in #​15249
• MSDia update by @​nohwnd in #​15281
• Use sdk.paths in global.json by @​Youssef1313 in #​15258

New Contributors

• @​jaredpar made their first contribution in #​15054
• @​Copilot made their first contribution in #​15094
• @​JamieMagee made their first contribution in #​15114
• @​dependabot[bot] made their first contribution in #​15179

Full Changelog: microsoft/vstest@v17.14.1...v18.0.0

npgsql/npgsql (Npgsql)

v10.0.0

See the release notes.

The full list of changes is available here.

What's Changed

• STJ 9.0 alternative approach by @​NinoFloris in #​5941
• Remove support for net6.0 by @​roji in #​5947
• Some leftover cleanup for removing net6.0 by @​roji in #​5949
• Map date/time to DateOnly/TimeOnly by default by @​roji in #​5948
• Make the cidr<->IPNetwork mapping the default by @​roji in #​5950
• Fix connecting with VerifyCA and VerifyFull by @​vonzshik in #​5944
• Remove stopwatch allocations by @​vonzshik in #​5977
• Bump actions/setup-dotnet from 4.1.0 to 4.2.0 by @​dependabot[bot] in #​5983
• Use exception convenience methods by @​bbowyersmyth in #​5982
• Bump actions/setup-dotnet from 4.2.0 to 4.3.0 by @​dependabot[bot] in #​6007
• Add support for postgresql type names with dots by @​dvas-hash in #​5971
• Send close_notify TLS alert on connection shutdown by @​vonzshik in #​5995
• Remove DisplayClass struct creation in PgReader by @​bbowyersmyth in #​6014
• Always dispose RemoteCertificate on SslStream by @​vonzshik in #​6022
• Remove LongRunningConnection field from NpgsqlConnector by @​vonzshik in #​6024
• Tighten SCRAM-SHA-256 SASL check by @​vonzshik in #​6023
• Add SHA3 hash algorithms for SASL authentication by @​vonzshik in #​6028
• Remove dotnet SDK version from CI (use global.json) by @​roji in #​6037
• Add support for specifying allowed auth methods by @​vonzshik in #​6036
• Migrate to SLNX by @​roji in #​6053
• Switch to Ubuntu 24.04 in CI by @​roji in #​6054
• Bump actions/setup-dotnet from 4.3.0 to 4.3.1 by @​dependabot[bot] in #​6059
• Add basic testing for tracing by @​vonzshik in #​6051
• parameter-collection Clone() should set correct collection instance by @​mgravell in #​6066
• Fix brew on mac CI by @​NinoFloris in #​6071
• Fix adding to hash lookup while renaming an unnamed parameter by @​vonzshik in #​6073
• Update LICENSE date (2024 -> 2025) by @​kurnakovv in #​6082
• Add tracing for physical connection open by @​vonzshik in #​6091
• Start testing on .NET 9 by @​vonzshik in #​5945
• Turn on by @​roji in #​6097
• Reenable public API analyzer by @​roji in #​6101
• Update Npgsql to .NET 9 by @​vonzshik in #​6099
• Ignore system CA store if root certificate is provided by @​vonzshik in #​6102
• Fix reading columns asynchronously via JsonNet plugin by @​vonzshik in #​6109
• Fixes #​6107 missed should buffer in biginteger numeric converter by @​NinoFloris in #​6117
• Fix logging parameters with batches by @​vonzshik in #​6079
• Implement GSSAPI session encryption by @​vonzshik in #​6131
• feat: add support for PGAPPNAME to set application name by @​michael-todorovic in #​6139
• Fix returning null from KerberosUsernameProvider.GetUsername with concurrent calls by @​vonzshik in #​6137
• Add NpgsqlTsVector.Empty by @​roji in #​6145
• Add assert to NpgsqlCommand.Transaction if it's completed by @​vonzshik in #​6151
• Compare normalized type names by @​0MG-DEN in #​6011
• Do CI testing for PG18 (beta) by @​roji in #​6155
• Fix infinite consume on error with connection break by @​vonzshik in #​6161
• Bump actions/checkout from 4 to 5 by @​dependabot[bot] in #​6174
• Fix concurrent NpgsqlDataSource.Dispose and Bootstrap by @​vonzshik in #​6116
• Set socket options before connecting to postgres by @​vonzshik in #​6090
• Bump actions/setup-dotnet from 4.3.1 to 5.0.0 by @​dependabot[bot] in #​6182
• Bump BenchmarkDotNet from 0.13.12 to 0.15.2 by @​dependabot[bot] in #​6191
• Bump GitHubActionsTestLogger from 2.3.3 to 2.4.1 by @​dependabot[bot] in #​6192
• Bump Microsoft.Data.SqlClient from 5.2.2 to 6.1.1 by @​dependabot[bot] in #​6196
• Move to PublicApiAnalyzers v4 by @​manandre in #​6185
• Move to NUnit v4 by @​manandre in #​6183
• Bump extension versions to 10.0.0-rc.1 by @​roji in #​6209
• Fix logical replication tests with PostgreSQL 18 by @​vonzshik in #​6171
• Update NuGet dependencies by @​manandre in #​6188
• Fix possible deadlock while asynchronously reading values from reader by @​vonzshik in #​6202
• Bump BenchmarkDotNet from 0.15.2 to 0.15.3 by @​dependabot[bot] in #​6215
• Bump BenchmarkDotNet from 0.15.3 to 0.15.4 by @​dependabot[bot] in #​6221
• Suppress ExecutionContext while creating timers by @​vonzshik in #​6106
• Rewrite NpgsqlConnectionStringBuilderSourceGenerator as incremental by @​manandre in #​6186
• Add COPY operations dispose on initialization failure by @​vonzshik in #​6220
• Bump OpenTelemetry.Api from 1.12.0 to 1.13.0 by @​dependabot[bot] in #​6229
• Bump Newtonsoft.Json from 13.0.3 to 13.0.4 by @​dependabot[bot] in #​6228
• Bump Microsoft.NET.Test.Sdk from 17.14.1 to 18.0.0 by @​dependabot[bot] in #​6227
• Bump Microsoft.CodeAnalysis.CSharp from 4.13.0 to 4.14.0 by @​dependabot[bot] in #​6226
• Bump Scriban.Signed from 6.2.1 to 6.4.0 by @​dependabot[bot] in #​6230
• Bump xunit.runner.visualstudio from 3.1.4 to 3.1.5 by @​dependabot[bot] in #​6231
• Allow specifying TargetSessionAttributes in connection string with NpgsqlDataSourceBuilder by @​vonzshik in #​6046
• Add support for multiple client certificates by @​vonzshik in #​6162
• Fix getting wrong schema with CommandBehavior.SchemaOnly and autoprepare by @​vonzshik in #​6040
• Remove timeout translation from NpgsqlReadBuffer by @​vonzshik in #​6126
• Add a connection string parameter to control NpgsqlException.BatchCommand by @​vonzshik in #​6098
• Add implicit cast from .NET IPNetwork to NpgsqlInet by @​roji in #​6232
• Bump NUnit3TestAdapter from 5.1.0 to 5.2.0 by @​dependabot[bot] in #​6236
• Bump Microsoft.Data.SqlClient from 6.1.1 to 6.1.2 by @​dependabot[bot] in #​6242
• Bump github/codeql-action from 3 to 4 by @​dependabot[bot] in #​6239
• Bump OpenTelemetry.Api from 1.13.0 to 1.13.1 by @​dependabot[bot] in #​6245
• Fix a few issues with type mappings for schema generator by @​vonzshik in #​6241
• Bump dependencies to 10.0.0-rc.2 by @​roji in #​6260
• Fix infinite loop when a connector is closed while concurrently consuming result set by @​vonzshik in #​6265
• Bump actions/upload-artifact from 4 to 5 by @​dependabot[bot] in #​6266
• Fix streaming threshold value by @​NinoFloris in #​6269
• Respect configured schemas in enum field loading by @​NinoFloris in #​6268
• Bump Scriban.Signed from 6.4.0 to 6.5.0 by @​dependabot[bot] in #​6273
• Incorrect multi-threading synchronization in UpdateDatabaseState by @​ArtemSerostanov in #​6114
• Additional GetBytes/GetStream tests by @​bbowyersmyth in #​5934
• Fix inclusive infinity upper bound interval conversion by @​NinoFloris in #​6270
• Wrap GetHostAddresses/Async calls to catch SocketException by @​pedrowindisch in #​5664
• Add Deconstruct() for Npgsql types by @​ddas09 in #​5695
• Explicitly set histogram bucket bounds (#​6167) by @​KeterSCP in #​6168
• Reduce temporary string creation during types load by @​bbowyersmyth in #​5986
• Use actual version of the Npgsql for ActivitySource by @​KeterSCP in #​6277
• Stop testing PostGIS on Windows by @​roji in #​6275
• Upgrade to postgres 18 for CI by @​vonzshik in #​6223
• Bump BenchmarkDotNet from 0.15.4 to 0.15.5 by @​dependabot[bot] in #​6279
• Bump NUnit.Analyzers from 4.10.0 to 4.11.0 by @​dependabot[bot] in #​6280
• Bump NUnit.Analyzers from 4.11.0 to 4.11.1 by @​dependabot[bot] in #​6281
• Move json dom mappings to the NativeAOT compatible resolver by @​NinoFloris in #​6271
• Add SupportsReading plumbing by @​NinoFloris in #​5472
• Populate CommandText when NpgsqlBatchCommand is created by @​brunohoff in #​6234
• Remove unsafe from WriteStringChunked by @​bbowyersmyth in #​5988
• Cube support by @​kirkbrauer in #​3867
• Bump NUnit.Analyzers from 4.11.1 to 4.11.2 by @​dependabot[bot] in #​6288
• fixes ConnectionReset on secured connection on Windows by @​trivalik in #​6287
• Remove task cancellation helpers by @​NinoFloris in #​6291
• NpgsqlMultiHostDataSource: rethrow OperationCanceledException on canc… by @​rus-art in #​6283
• Bump BenchmarkDotNet from 0.15.5 to 0.15.6 by @​dependabot[bot] in #​6293
• Allow specifying multiple root certificates in NpgsqlDataSourceBuilder by @​vonzshik in #​6057
• Fix returning properties from NpgsqlConnectionStringBuilder.GetProperties by @​vonzshik in #​6290
• Fix the NpgsqlCube to use the full G17 floating-point format by @​kirkbrauer in #​6295
• Include .NET 10.0 for the main project and all tests by @​NinoFloris in #​6300
• Prioritize _dataTypeName over _npgsqlDbType by @​NinoFloris in #​6299
• Do not parse batch commands with no parameters by @​lfpraca in #​6298
• Improve output parameter handling by @​NinoFloris in #​5645
• Check pgTypeId for default resolution call in ObjectConverter by @​NinoFloris in #​6304
• Move all reloadable state into one reference by @​NinoFloris in #​6303
• Upgrade from .NET10-RC2 to .NET10-RTM. by @​josteink in #​6311
• Bump Microsoft.Data.SqlClient from 6.1.2 to 6.1.3 by @​dependabot[bot] in #​6319
• Bump Microsoft.NET.Test.Sdk from 18.0.0 to 18.0.1 by @​dependabot[bot] in #​6320
• Bump OpenTelemetry.Api from 1.13.1 to 1.14.0 by @​dependabot[bot] in #​6321
• Bump Scriban.Signed from 6.5.0 to 6.5.1 by @​dependabot[bot] in #​6322
• Add experimental to AddTypeInfoResolverFactory by @​NinoFloris in #​6325
• Add IDbTypeResolver to allow plugins to control how DbTypes are mapped by @​PauloHMattos in #​6267
• Fix idle/busy conn. pool metrics when using NpgsqlDataSource by @​elafarge in #​5497
• Add Timeout property to text COPY operations by @​vonzshik in #​6294
• Fix synchronous GSS session encryption and enable it by default by @​vonzshik in #​6324
• Move TryTrackDataSource to constructor and enable metrics more accurately by @​NinoFloris in #​6329
• Define TFM-specific dependencies by @​sebastienros in #​6326
• Align OTel metrics to latest spec by @​roji in #​6328
• Bump Microsoft.CodeAnalysis.CSharp from 4.14.0 to 5.0.0 by @​dependabot[bot] in #​6330
• Fix failing Timeout_during_authentication test by @​vonzshik in #​6332
• Complete fix for failing Timeout_during_authentication test by @​vonzshik in #​6334
• Throw ObjectDisposedException on assignment to Disposed NpgsqlCommand by @​kevbot18 in #​6048
• Override GetColumnSchemaAsync by @​NinoFloris in #​6337
• Align with the stable OTel tracing specs by @​roji in #​6338
• Bump actions/checkout from 5 to 6 by @​dependabot[bot] in [#​6344](https://redirect.githu

---

Configuration

📅 Schedule: Branch creation - "before 7am on Monday,before 7am on Friday" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[coderabbitai]

Important

Review skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}