From 0ae7da6370c571aae24b58a992566108aa76f9ee Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Wed, 10 Jan 2024 15:31:16 +0000
Subject: [PATCH] fix:
 3-Authorization-II/2-call-api-b2c/API/TodoListAPI/TodoListAPI.csproj to
 reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-DOTNET-MICROSOFTIDENTITYMODELJSONWEBTOKENS-6148656
- https://snyk.io/vuln/SNYK-DOTNET-SYSTEMIDENTITYMODELTOKENSJWT-6148655
---
 .../2-call-api-b2c/API/TodoListAPI/TodoListAPI.csproj           | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/3-Authorization-II/2-call-api-b2c/API/TodoListAPI/TodoListAPI.csproj b/3-Authorization-II/2-call-api-b2c/API/TodoListAPI/TodoListAPI.csproj
index 4eab0792..65bc6cd8 100644
--- a/3-Authorization-II/2-call-api-b2c/API/TodoListAPI/TodoListAPI.csproj
+++ b/3-Authorization-II/2-call-api-b2c/API/TodoListAPI/TodoListAPI.csproj
@@ -14,7 +14,7 @@
       <PrivateAssets>all</PrivateAssets>
       <IncludeAssets>runtime; build; native; contentfiles; analyzers; buildtransitive</IncludeAssets>
     </PackageReference>
-    <PackageReference Include="Microsoft.Identity.Web" Version="1.25.1" />
+    <PackageReference Include="Microsoft.Identity.Web" Version="2.16.1" />
     <PackageReference Include="Microsoft.VisualStudio.Web.CodeGeneration.Design" Version="6.0.6" />
     <PackageReference Include="Microsoft.AspNetCore.Mvc.Razor.RuntimeCompilation" Version="6.0.6" Condition="'$(Configuration)' == 'Debug'" />
   </ItemGroup>