chore(deps): update dependency automapper to v16 - autoclosed

[renovate]

This PR contains the following updates:

Package	Change	Age	Confidence
AutoMapper (source)	12.0.1 → 16.1.1

---

Release Notes

LuckyPennySoftware/AutoMapper (AutoMapper)

v16.1.1

What's Changed

• Better async handling of license validation; fixes #​4612 by @​jbogard in #​4613
• More artifacts for builds (test results and SBOM) by @​jbogard in #​4615
• Update Microsoft.Sbom.DotNetTool to 4.1.5 by @​jbogard in #​4616

Security

Fixed an issue where certain cyclic or self-referential object graphs could trigger uncontrolled recursion during mapping, potentially resulting in stack exhaustion and denial of service.

Applications that process untrusted or attacker-controlled object graphs through affected mapping paths may be impacted.

Users should upgrade to this release.

Security advisory: GHSA-rvv3-g6hj-g44x

Thanks to @​skdishansachin for responsibly disclosing this issue.

Full Changelog: LuckyPennySoftware/AutoMapper@v16.1.0...v16.1.1

v16.1.0

What's Changed

• Add Debug and Release build configurations to slnx by @​Copilot in #​4590
• Migrating to slnx by @​jbogard in #​4589
• Allow disabling of polymorphic LINQ mapping by @​jbogard in #​4596
• Fix duplicate BOM in ServiceCollectionExtensions.cs by @​Copilot in #​4600
• Fix review feedback: double semicolon, DI condition integration test, docs example by @​Copilot in #​4601
• Adding DI-enabled conditions and pre-conditions; updated docs accordi… by @​jbogard in #​4599
• Adding support for DI-enabled destination factories. by @​jbogard in #​4603
• Correctly converting nullables for MapAtRuntime; fixes #​4597 by @​jbogard in #​4604
• Correctly handling consecutive uppercase characters; fixes #​4593 by @​jbogard in #​4605
• Wrapping the exception to provide better feedback to the user; fixes … by @​jbogard in #​4606
• Fixing bug around order of open generic registration by @​jbogard in #​4607
• Adding perpetual licensing by @​jbogard in #​4608

New Contributors

• @​Copilot made their first contribution in #​4590

Full Changelog: LuckyPennySoftware/AutoMapper@v16.0.0...v16.1.0

v16.0.0

What's Changed

• Fix release pipelines by @​jbogard in #​4583
• Adding support for .NET 10 by @​jbogard in #​4586

Full Changelog: LuckyPennySoftware/AutoMapper@v15.1.0...v16.0.0

v15.1.3

What's Changed

• Fix GHSA-rvv3-g6hj-g44x: default MaxDepth of 64 for self-referential types (15.x backport) by @​jbogard in #​4619

Security

Fixed an issue where certain cyclic or self-referential object graphs could trigger uncontrolled recursion during mapping, potentially resulting in stack exhaustion and denial of service.

Applications that process untrusted or attacker-controlled object graphs through affected mapping paths may be impacted.

Users should upgrade to this release.

Security advisory: GHSA-rvv3-g6hj-g44x

Thanks to @​skdishansachin for responsibly disclosing this issue.

Full Changelog: LuckyPennySoftware/AutoMapper@v15.1.0...v15.1.3

v15.1.2

What's Changed

• docs: Document duplicate license message behavior and fixes by @​Copilot in #​4617

Security

Fixed an issue where certain cyclic or self-referential object graphs could trigger uncontrolled recursion during mapping, potentially resulting in stack exhaustion and denial of service.

Applications that process untrusted or attacker-controlled object graphs through affected mapping paths may be impacted.

Users should upgrade to this release.

Security advisory: GHSA-rvv3-g6hj-g44x

Thanks to @​skdishansachin for responsibly disclosing this issue.

Full Changelog: LuckyPennySoftware/AutoMapper@v16.1.1...v15.1.2

v15.1.1

What's Changed

• docs: Document duplicate license message behavior and fixes by @​Copilot in #​4617

Security

Fixed an issue where certain cyclic or self-referential object graphs could trigger uncontrolled recursion during mapping, potentially resulting in stack exhaustion and denial of service.

Applications that process untrusted or attacker-controlled object graphs through affected mapping paths may be impacted.

Users should upgrade to this release.

Security advisory: GHSA-rvv3-g6hj-g44x

Thanks to @​skdishansachin for responsibly disclosing this issue.

Full Changelog: LuckyPennySoftware/AutoMapper@v16.1.1...v15.1.1

v15.1.0

What's Changed

• remove Microsoft.SourceLink.GitHub by @​SimonCropp in #​4555
• Direct .NET 4.x support by @​jbogard in #​4569
• Bumping the JsonWebTokens because of GHSA-8g4q-xg66-9fp4; fixes #​4575 by @​jbogard in #​4576
• Provide better exceptions for errors when building the mapping plan by @​jbogard in #​4577
• Adding docs for license configuration by @​jbogard in #​4581
• Updating refs to fix missing method issue by @​jbogard in #​4582

New Contributors

• @​SimonCropp made their first contribution in #​4555

Full Changelog: LuckyPennySoftware/AutoMapper@v15.0.1...v15.1.0

v15.0.1

What's Changed

• Removing public signing; fixes #​4545 by @​jbogard in #​4552
• Adding back missing overloads and reverting registering behavior by @​jbogard in #​4554

Full Changelog: LuckyPennySoftware/AutoMapper@v15.0.0...v15.0.1

This release supersedes the 15.0.0 release, reverting behavior and overloads so that the AddAutoMapper overloads separate the "scanning for maps" from the "scanning for dependencies". Unfortunately it's not really possible to combine these two together.

This also fixes a critical bug in #​4545 that does not work with .NET 4.x applications (as intended).

Because of this, the 15.0.0 will be delisted because of the breaking changes there.

v15.0.0

Full Changelog: LuckyPennySoftware/AutoMapper@v14.0.0...v15.0.0

• Added support for .NET Standard 2.0
• Requiring license key
• Moving from MIT license to dual commercial/OSS license

To set your license key:

services.AddAutoMapper(cfg => {
    cfg.LicenseKey = "<License key here>";
});

This also introduced a breaking change with MapperConfiguration requiring an ILoggerFactory for logging purposes:

public MapperConfiguration(MapperConfigurationExpression configurationExpression, ILoggerFactory loggerFactory)

Registering AutoMapper with services.AddAutoMapper will automatically supply this parameter. Otherwise you'll need to supply the logger factory.

You can obtain your license key at AutoMapper.io

v14.0.0

What's Changed

• Reverted the nullable annotations by @​lbargaoanu in AutoMapper#4390
• Fix polymorphic mapping when some derived types have explicit mappings and others do not by @​kev-andrews in AutoMapper#4402
• The default naming conventions for a profile should come from the glo… by @​lbargaoanu in AutoMapper#4428
• Fix Issue #​4502 - Confusing exception when trying to map types with … by @​Biotronic in AutoMapper#4503
• Target .net 8 and seal more classes by @​lbargaoanu in AutoMapper#4474
• Target .Net 9 in tests by @​lbargaoanu in AutoMapper#4507
• Changed lock-threads parameters by @​lbargaoanu in AutoMapper#4516
• Don't throw and catch on validation by @​lbargaoanu in AutoMapper#4526

New Contributors

• @​kev-andrews made their first contribution in AutoMapper#4402
• @​Biotronic made their first contribution in AutoMapper#4503

Full Changelog: LuckyPennySoftware/AutoMapper@v13.0.1...v14.0.0

v13.0.1

What's Changed

• Updating to latest template from readthedocs.io by @​jbogard in AutoMapper#4380
• Remove Microsoft.CSharp nuget dependency by @​Romfos in AutoMapper#4381
• We build for .net 6 now by @​lbargaoanu in AutoMapper#4382
• Revert "nullable annotations for the runtime public API" by @​jbogard in AutoMapper#4388

New Contributors

• @​Romfos made their first contribution in AutoMapper#4381

Full Changelog: LuckyPennySoftware/AutoMapper@v13.0.0...v13.0.1

v13.0.0

What's Changed

• Emphasized the ProjectTo method call location by @​jbogard in AutoMapper#4105
• Target .NET 6 by @​lbargaoanu in AutoMapper#4202
• Add the DI code by @​lbargaoanu in AutoMapper#4278
• Support mapping of polymorphic collection with abstract parent type by @​kvpt in AutoMapper#4304
• Constructor mapping inheritance by @​rubengonzalezlodeiro in AutoMapper#4314
• Add integration test case by @​kvpt in AutoMapper#4320
• add options to disable and override ExplicitExpansion by @​Angelinsky7 in AutoMapper#4327
• ProjectTo runtime polymorphic mapping with Include/IncludeBase by @​lbargaoanu in AutoMapper#4280

New Contributors

• @​kvpt made their first contribution in AutoMapper#4304
• @​rubengonzalezlodeiro made their first contribution in AutoMapper#4314
• @​Angelinsky7 made their first contribution in AutoMapper#4327

Full Changelog: LuckyPennySoftware/AutoMapper@v12.0.1...v13.0.0

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

This PR was generated by Mend Renovate. View the repository job log.

[github-actions]

Thank you for your contribution! 🙏 We will review it as soon as possible.