[dotnet][rb][java][js][py] Automated Browser Version Update

[selenium-ci]

User description

This is an automated pull request to update pinned browsers and drivers

Merge after verify the new browser versions properly passing the tests and no bugs need to be filed

---

PR Type

Enhancement

---

Description

• Update Microsoft Edge browser to version 142.0.3595.80

• Update Edge driver to version 142.0.3595.80

• Update macOS, Linux Edge packages and drivers

• Update corresponding SHA256 checksums for all artifacts

---

Diagram Walkthrough

flowchart LR
  A["Edge 142.0.3595.65"] -- "version bump" --> B["Edge 142.0.3595.80"]
  C["EdgeDriver 142.0.3595.65"] -- "version bump" --> D["EdgeDriver 142.0.3595.80"]
  B -- "macOS pkg" --> E["mac_edge"]
  B -- "Linux deb" --> F["linux_edge"]
  D -- "macOS driver" --> G["mac_edgedriver"]
  D -- "Linux driver" --> H["linux_edgedriver"]

Loading

File Walkthrough

Relevant files

Configuration changes

repositories.bzl Update Edge browser and driver versions to 142.0.3595.80  common/repositories.bzl Updated Microsoft Edge macOS package from version 142.0.3595.65 to 142.0.3595.80 Updated Microsoft Edge Linux deb package from version 142.0.3595.65 to 142.0.3595.80 Updated Edge driver for Linux from version 142.0.3595.65 to 142.0.3595.80 Updated Edge driver for macOS from version 142.0.3595.65 to 142.0.3595.80 Updated all corresponding download URLs and SHA256 checksums for each artifact +9/-9

---

[qodo-code-review]

PR Compliance Guide 🔍

(Compliance updated until commit f23ffee)

Below is a summary of compliance checks for this PR:

Security Compliance
🟢	No security concerns identified No security vulnerabilities detected by AI analysis. Human verification advised for critical code.
Ticket Compliance
⚪	🎫 No ticket provided Create ticket/issue
Codebase Duplication Compliance
⚪	Codebase context is not defined Follow the guide to enable codebase context checks.
Custom Compliance
🟢	Generic: Meaningful Naming and Self-Documenting Code Objective: Ensure all identifiers clearly express their purpose and intent, making code self-documenting Status: Passed Learn more about managing compliance generic rules or creating your own custom rules
	Generic: Secure Error Handling Objective: To prevent the leakage of sensitive system information through error messages while providing sufficient detail for internal debugging. Status: Passed Learn more about managing compliance generic rules or creating your own custom rules
	Generic: Secure Logging Practices Objective: To ensure logs are useful for debugging and auditing without exposing sensitive information like PII, PHI, or cardholder data. Status: Passed Learn more about managing compliance generic rules or creating your own custom rules
⚪	Generic: Comprehensive Audit Trails Objective: To create a detailed and reliable record of critical system actions for security analysis and compliance. Status: No audit logs: The added changes only update external package URLs and checksums and do not include or affect any critical action logging, so it is unclear whether required audit trails are impacted. Referred Code pkg_archive( name = "mac_edge", url = "https://msedge.sf.dl.delivery.mp.microsoft.com/filestreamingservice/files/f46834c6-c739-468a-a1ca-90453d0743e5/MicrosoftEdge-142.0.3595.80.pkg", sha256 = "97892f8ffc0fdf60e42f58ec369667d0880793d9b378b702ee0b360e3a67aee4", move = { "MicrosoftEdge-142.0.3595.80.pkg/Payload/Microsoft Edge.app": "Edge.app", }, build_file_content = """ load("@aspect_rules_js//js:defs.bzl", "js_library") package(default_visibility = ["//visibility:public"]) exports_files(["Edge.app"]) js_library( name = "edge-js", data = glob(["Edge.app/**/*"]), ) """, ) deb_archive( ... (clipped 42 lines) Learn more about managing compliance generic rules or creating your own custom rules
	Generic: Robust Error Handling and Edge Case Management Objective: Ensure comprehensive error handling that provides meaningful context and graceful degradation Status: No error handling: The new rules update URLs and hashes without visible validation or fallback behavior in this diff, so robustness of fetch failures or checksum mismatches cannot be confirmed. Referred Code pkg_archive( name = "mac_edge", url = "https://msedge.sf.dl.delivery.mp.microsoft.com/filestreamingservice/files/f46834c6-c739-468a-a1ca-90453d0743e5/MicrosoftEdge-142.0.3595.80.pkg", sha256 = "97892f8ffc0fdf60e42f58ec369667d0880793d9b378b702ee0b360e3a67aee4", move = { "MicrosoftEdge-142.0.3595.80.pkg/Payload/Microsoft Edge.app": "Edge.app", }, build_file_content = """ load("@aspect_rules_js//js:defs.bzl", "js_library") package(default_visibility = ["//visibility:public"]) exports_files(["Edge.app"]) js_library( name = "edge-js", data = glob(["Edge.app/**/*"]), ) """, ) deb_archive( ... (clipped 42 lines) Learn more about managing compliance generic rules or creating your own custom rules
	Generic: Security-First Input Validation and Data Handling Objective: Ensure all data inputs are validated, sanitized, and handled securely to prevent vulnerabilities Status: External sources: The PR updates external download URLs and SHA256 checksums; while hashes are provided, the diff does not show signature verification or pinning beyond checksum, so overall input validation of external artifacts cannot be fully assessed. Referred Code pkg_archive( name = "mac_edge", url = "https://msedge.sf.dl.delivery.mp.microsoft.com/filestreamingservice/files/f46834c6-c739-468a-a1ca-90453d0743e5/MicrosoftEdge-142.0.3595.80.pkg", sha256 = "97892f8ffc0fdf60e42f58ec369667d0880793d9b378b702ee0b360e3a67aee4", move = { "MicrosoftEdge-142.0.3595.80.pkg/Payload/Microsoft Edge.app": "Edge.app", }, build_file_content = """ load("@aspect_rules_js//js:defs.bzl", "js_library") package(default_visibility = ["//visibility:public"]) exports_files(["Edge.app"]) js_library( name = "edge-js", data = glob(["Edge.app/**/*"]), ) """, ) deb_archive( ... (clipped 42 lines) Learn more about managing compliance generic rules or creating your own custom rules

Compliance status legend

🟢 - Fully Compliant
🟡 - Partial Compliant
🔴 - Not Compliant
⚪ - Requires Further Human Verification
🏷️ - Compliance label

---

Previous compliance checks

Compliance check up to commit f23ffee

Security Compliance
🟢	No security concerns identified No security vulnerabilities detected by AI analysis. Human verification advised for critical code.
Ticket Compliance
⚪	🎫 No ticket provided Create ticket/issue
Codebase Duplication Compliance
⚪	Codebase context is not defined Follow the guide to enable codebase context checks.
Custom Compliance
🟢	Generic: Meaningful Naming and Self-Documenting Code Objective: Ensure all identifiers clearly express their purpose and intent, making code self-documenting Status: Passed Learn more about managing compliance generic rules or creating your own custom rules
	Generic: Secure Logging Practices Objective: To ensure logs are useful for debugging and auditing without exposing sensitive information like PII, PHI, or cardholder data. Status: Passed Learn more about managing compliance generic rules or creating your own custom rules
⚪	Generic: Comprehensive Audit Trails Objective: To create a detailed and reliable record of critical system actions for security analysis and compliance. Status: No audit logs: The new code only updates URLs, checksums, and move paths for browser packages and does not add or modify any logging for critical actions, so it is unclear whether audit trails are captured elsewhere. Referred Code url = "https://msedge.sf.dl.delivery.mp.microsoft.com/filestreamingservice/files/f46834c6-c739-468a-a1ca-90453d0743e5/MicrosoftEdge-142.0.3595.80.pkg", sha256 = "97892f8ffc0fdf60e42f58ec369667d0880793d9b378b702ee0b360e3a67aee4", move = { "MicrosoftEdge-142.0.3595.80.pkg/Payload/Microsoft Edge.app": "Edge.app", }, build_file_content = """ load("@aspect_rules_js//js:defs.bzl", "js_library") package(default_visibility = ["//visibility:public"]) exports_files(["Edge.app"]) js_library( name = "edge-js", data = glob(["Edge.app/**/*"]), ) """, ) deb_archive( name = "linux_edge", url = "https://packages.microsoft.com/repos/edge/pool/main/m/microsoft-edge-stable/microsoft-edge-stable_142.0.3595.80-1_amd64.deb", ... (clipped 40 lines) Learn more about managing compliance generic rules or creating your own custom rules
	Generic: Robust Error Handling and Edge Case Management Objective: Ensure comprehensive error handling that provides meaningful context and graceful degradation Status: No error handling: The additions update external artifact URLs and checksums without showing any associated error handling for download/verification failures in this diff, which may be handled elsewhere. Referred Code url = "https://msedge.sf.dl.delivery.mp.microsoft.com/filestreamingservice/files/f46834c6-c739-468a-a1ca-90453d0743e5/MicrosoftEdge-142.0.3595.80.pkg", sha256 = "97892f8ffc0fdf60e42f58ec369667d0880793d9b378b702ee0b360e3a67aee4", move = { "MicrosoftEdge-142.0.3595.80.pkg/Payload/Microsoft Edge.app": "Edge.app", }, build_file_content = """ load("@aspect_rules_js//js:defs.bzl", "js_library") package(default_visibility = ["//visibility:public"]) exports_files(["Edge.app"]) js_library( name = "edge-js", data = glob(["Edge.app/**/*"]), ) """, ) deb_archive( name = "linux_edge", url = "https://packages.microsoft.com/repos/edge/pool/main/m/microsoft-edge-stable/microsoft-edge-stable_142.0.3595.80-1_amd64.deb", ... (clipped 40 lines) Learn more about managing compliance generic rules or creating your own custom rules
	Generic: Secure Error Handling Objective: To prevent the leakage of sensitive system information through error messages while providing sufficient detail for internal debugging. Status: Error exposure unclear: The changes do not introduce user-facing errors but also do not show how errors from fetching external archives are reported, making secure error handling unverifiable from this diff. Referred Code url = "https://msedge.sf.dl.delivery.mp.microsoft.com/filestreamingservice/files/f46834c6-c739-468a-a1ca-90453d0743e5/MicrosoftEdge-142.0.3595.80.pkg", sha256 = "97892f8ffc0fdf60e42f58ec369667d0880793d9b378b702ee0b360e3a67aee4", move = { "MicrosoftEdge-142.0.3595.80.pkg/Payload/Microsoft Edge.app": "Edge.app", }, build_file_content = """ load("@aspect_rules_js//js:defs.bzl", "js_library") package(default_visibility = ["//visibility:public"]) exports_files(["Edge.app"]) js_library( name = "edge-js", data = glob(["Edge.app/**/*"]), ) """, ) deb_archive( name = "linux_edge", url = "https://packages.microsoft.com/repos/edge/pool/main/m/microsoft-edge-stable/microsoft-edge-stable_142.0.3595.80-1_amd64.deb", ... (clipped 40 lines) Learn more about managing compliance generic rules or creating your own custom rules
	Generic: Security-First Input Validation and Data Handling Objective: Ensure all data inputs are validated, sanitized, and handled securely to prevent vulnerabilities Status: External input trust: New external URLs are introduced with corresponding SHA-256 pins, but the diff does not show additional validation or fallback mechanisms for supply-chain integrity beyond checksums, which may be sufficient depending on existing repository rules. Referred Code url = "https://msedge.sf.dl.delivery.mp.microsoft.com/filestreamingservice/files/f46834c6-c739-468a-a1ca-90453d0743e5/MicrosoftEdge-142.0.3595.80.pkg", sha256 = "97892f8ffc0fdf60e42f58ec369667d0880793d9b378b702ee0b360e3a67aee4", move = { "MicrosoftEdge-142.0.3595.80.pkg/Payload/Microsoft Edge.app": "Edge.app", }, build_file_content = """ load("@aspect_rules_js//js:defs.bzl", "js_library") package(default_visibility = ["//visibility:public"]) exports_files(["Edge.app"]) js_library( name = "edge-js", data = glob(["Edge.app/**/*"]), ) """, ) deb_archive( name = "linux_edge", url = "https://packages.microsoft.com/repos/edge/pool/main/m/microsoft-edge-stable/microsoft-edge-stable_142.0.3595.80-1_amd64.deb", ... (clipped 40 lines) Learn more about managing compliance generic rules or creating your own custom rules

[qodo-code-review]

PR Code Suggestions ✨

Explore these optional code suggestions:

Category	Suggestion	Impact
Learned best practice	Add fallback download mirrors Provide multiple verified mirrors via the urls attribute so builds fall back if the primary host is unavailable or renamed. Keep sha256 to ensure integrity. common/repositories.bzl [166-181] http_archive( name = "linux_edgedriver", - url = "https://msedgedriver.microsoft.com/142.0.3595.80/edgedriver_linux64.zip", + urls = [ + "https://msedgedriver.microsoft.com/142.0.3595.80/edgedriver_linux64.zip", + "https://mirror.example.com/msedge/142.0.3595.80/edgedriver_linux64.zip", + ], sha256 = "3647d567775064719c30531a451d81e6eeff57beea91f4a1fe78fef5a1ed739d", build_file_content = """ load("@aspect_rules_js//js:defs.bzl", "js_library") package(default_visibility = ["//visibility:public"]) exports_files(["msedgedriver"]) js_library( name = "msedgedriver-js", data = ["msedgedriver"], ) """, ) Apply / Chat Suggestion importance[1-10]: 6 __ Why: Relevant best practice - Guard external I/O and downloads with validation and fallback to avoid brittle build failures when third‑party artifacts move or differ.	Low
More