Merge pull request #29 from jmservera:jmservera/fix-vulns

Fix vulnerabilities in xunit, coverlet.collector, and microsoft.semantickernel This pull request fixes vulnerabilities in the following packages: xunit.2.5.3.nupkg: 2 vulnerabilities (highest severity is: 7.5) #14 coverlet.collector.6.0.0.nupkg: 1 vulnerability (highest severity is: 7.5) #13 microsoft.semantickernel.1.14.1.nupkg: 1 vulnerability (highest severity is: 7.5) #18
jmservera · Aug 10, 2024 · c908750 · c908750
2 parents 22f8f7d + 02f1cc3
commit c908750
Show file tree

Hide file tree

Showing 8 changed files with 9,081 additions and 10,261 deletions.
diff --git a/ai/copilot/contoso-real-state-msg-extension/package-lock.json b/ai/copilot/contoso-real-state-msg-extension/package-lock.json
diff --git a/ai/copilot/contoso-real-state-msg-extension/package.json b/ai/copilot/contoso-real-state-msg-extension/package.json
@@ -21,9 +21,9 @@
   },
   "dependencies": {
     "adaptive-expressions": "^4.20.0",
-    "adaptivecards-templating": "^2.3.1",
     "adaptivecards": "^3.0.1",
-    "botbuilder": "^4.20.0",
+    "adaptivecards-templating": "^2.3.1",
+    "botbuilder": "^4.14.1",
     "restify": "^11.1.0"
   },
   "devDependencies": {

diff --git a/ai/semantickernel/console/semker.csproj b/ai/semantickernel/console/semker.csproj
@@ -15,10 +15,10 @@
     <PackageReference Include="Microsoft.Extensions.Logging" Version="8.0.0" />
     <PackageReference Include="Microsoft.Extensions.Logging.Console" Version="8.0.0" />
     <PackageReference Include="Microsoft.Extensions.Logging.Debug" Version="8.0.0" />
-    <PackageReference Include="Microsoft.SemanticKernel" Version="1.14.1" />
-    <PackageReference Include="Microsoft.SemanticKernel.Connectors.HuggingFace" Version="1.14.1-preview" />
-    <PackageReference Include="Microsoft.SemanticKernel.Plugins.Web" Version="1.14.1-alpha" />
-    <PackageReference Include="Microsoft.SemanticKernel.PromptTemplates.Handlebars" Version="1.14.1" />
+    <PackageReference Include="Microsoft.SemanticKernel" Version="1.17.1" />
+    <PackageReference Include="Microsoft.SemanticKernel.Connectors.HuggingFace" Version="1.17.1-preview" />
+    <PackageReference Include="Microsoft.SemanticKernel.Plugins.Web" Version="1.17.1-alpha" />
+    <PackageReference Include="Microsoft.SemanticKernel.PromptTemplates.Handlebars" Version="1.17.1" />
   </ItemGroup>
 
 </Project>
diff --git a/ai/semantickernel/web/Colors/Colors.csproj b/ai/semantickernel/web/Colors/Colors.csproj
@@ -7,9 +7,9 @@
   </PropertyGroup>
 
   <ItemGroup>
-    <PackageReference Include="Microsoft.AspNetCore.OpenApi" Version="8.0.6" />
-    <PackageReference Include="Swashbuckle.AspNetCore" Version="6.4.0" />
-    <PackageReference Include="Microsoft.SemanticKernel" Version="1.14.1" />
+    <PackageReference Include="Microsoft.AspNetCore.OpenApi" Version="8.0.7" />
+    <PackageReference Include="Swashbuckle.AspNetCore" Version="6.7.0" />
+    <PackageReference Include="Microsoft.SemanticKernel" Version="1.17.1" />
   </ItemGroup>
 
   <PropertyGroup>