From da49ab59bd53c8c5fe5d4ee38b81ed288885bb79 Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Wed, 10 Jan 2024 15:09:21 +0000
Subject: [PATCH] fix:
 5-AccessControl/1-call-api-roles/API/TodoListAPI/TodoListAPI.csproj to reduce
 vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-DOTNET-MICROSOFTIDENTITYMODELJSONWEBTOKENS-6148656
- https://snyk.io/vuln/SNYK-DOTNET-SYSTEMIDENTITYMODELTOKENSJWT-6148655
---
 .../1-call-api-roles/API/TodoListAPI/TodoListAPI.csproj         | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/5-AccessControl/1-call-api-roles/API/TodoListAPI/TodoListAPI.csproj b/5-AccessControl/1-call-api-roles/API/TodoListAPI/TodoListAPI.csproj
index 4eab0792..65bc6cd8 100644
--- a/5-AccessControl/1-call-api-roles/API/TodoListAPI/TodoListAPI.csproj
+++ b/5-AccessControl/1-call-api-roles/API/TodoListAPI/TodoListAPI.csproj
@@ -14,7 +14,7 @@
       <PrivateAssets>all</PrivateAssets>
       <IncludeAssets>runtime; build; native; contentfiles; analyzers; buildtransitive</IncludeAssets>
     </PackageReference>
-    <PackageReference Include="Microsoft.Identity.Web" Version="1.25.1" />
+    <PackageReference Include="Microsoft.Identity.Web" Version="2.16.1" />
     <PackageReference Include="Microsoft.VisualStudio.Web.CodeGeneration.Design" Version="6.0.6" />
     <PackageReference Include="Microsoft.AspNetCore.Mvc.Razor.RuntimeCompilation" Version="6.0.6" Condition="'$(Configuration)' == 'Debug'" />
   </ItemGroup>