Microsoft.Data.OData Version=5.8.4

narasimhakudva · narasimhakudva · commit eb6ed09b60e1 · 2025-12-21T22:16:24.000+05:30
diff --git a/.github/dependabot.yml b/.github/dependabot.yml
@@ -0,0 +1,14 @@
+version: 2
+updates:
+  # Enable version updates for NuGet
+  - package-ecosystem: "nuget"
+    directory: "/"
+    schedule:
+      interval: "weekly"
+    open-pull-requests-limit: 10
+    labels:
+      - "dependencies"
+      - "security"
+    # Allow both direct and indirect dependencies
+    allow:
+      - dependency-type: "all"
diff --git a/src/ShippingRules.API/ShippingRules.API.csproj b/src/ShippingRules.API/ShippingRules.API.csproj
@@ -30,7 +30,7 @@
     <PackageReference Include="System.Private.Uri" Version="4.3.0" />
     
     <!-- Multiple CVEs: Security vulnerabilities in older version -->
-    <PackageReference Include="Microsoft.Data.OData" Version="5.6.0" />
+    <PackageReference Include="Microsoft.Data.OData" Version="5.8.4"/>
     
     <!-- CVE-2021-26701: Remote Code Execution vulnerability -->
     <PackageReference Include="System.Net.Http.WinHttpHandler" Version="4.3.0" />
