Bump log4net from 3.2.0 to 3.3.0 by dependabot[bot] · Pull Request #401 · gnh1201/welsonjs

dependabot · 2026-04-14T02:35:33Z

Updated log4net from 3.2.0 to 3.3.0.

Release notes

3.3.0 What's Changed

switch to macos-14 - mono no longer works on macos-15 by @FreeAndNil in switch to macos-14 - mono no longer works on macos-15 apache/logging-log4net#266
shorten console output for unit tests by @FreeAndNil in shorten console output for unit tests apache/logging-log4net#268
Fix DllImport attribute for OutputDebugString function by @ban-dana in Fix DllImport attribute for OutputDebugString function apache/logging-log4net#270
Fix marshalling for OutputDebugString parameter, add unit test by @ban-dana in Fix marshalling for OutputDebugString parameter, add unit test apache/logging-log4net#271
Bump js-yaml from 4.1.0 to 4.1.1 by @dependabot[bot] in Bump js-yaml from 4.1.0 to 4.1.1 apache/logging-log4net#272
Add versioning and support policy information by @FreeAndNil in Add versioning and support policy information apache/logging-log4net#275
added NewLineHandling to RemoteSyslogAppender - fixes #274 by @FreeAndNil in added NewLineHandling to RemoteSyslogAppender - fixes #274 apache/logging-log4net#276
fixed flaky test Log4Net_WritesLogFile_WithDateAndSizeRoll_Config_Works by @FreeAndNil in fixed flaky test Log4Net_WritesLogFile_WithDateAndSizeRoll_Config_Works apache/logging-log4net#277
#280 harden the handling of invalid characters for the XmlLayout classes by @FreeAndNil in #280 harden the handling of invalid characters for the XmlLayout classes apache/logging-log4net#280

New Contributors

@ban-dana made their first contribution in Fix DllImport attribute for OutputDebugString function apache/logging-log4net#270

Full Changelog: apache/logging-log4net@rel/3.2.0...rc/3.3.0-rc1
Nuget: https://www.nuget.org/packages/log4net/3.3.0

Commits viewable in compare view.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the Security Alerts page.

--- updated-dependencies: - dependency-name: log4net dependency-version: 3.3.0 dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com>

what-the-diff · 2026-04-14T02:35:53Z

PR Summary

Upgraded log4net Dependency
The version of log4net, a library we use for logging application activities, has been updated from 3.2.0 to 3.3.0. This improvement ensures we benefit from the latest features and security patches of the library.
Changed Project File Elements
Added an element in the project file that ensures the log4net reference remains private. This improvement provides increased security by limiting the access of our code in certain contexts.
Improved Configuration File Formatting
There has been a reorganization of settings entries in app.config file, which is our application's configuration file, to ensure proper XML formatting. This ensures that the settings are easier to read and modify.
Added Assembly Binding Redirection
Assembly binding redirection for log4net has been introduced in app.config. This means when the application is looking for an older version of log4net, it will be directed towards the new upgraded version instead. This helps to maintain compatibility and avoid any version conflicts.

sonarqubecloud · 2026-04-14T02:36:15Z

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

Bump log4net from 3.2.0 to 3.3.0

c780deb

--- updated-dependencies: - dependency-name: log4net dependency-version: 3.3.0 dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot bot added .NET Pull requests that update .net code dependencies Pull requests that update a dependency file labels Apr 14, 2026

gnh1201 merged commit 89a370c into master Apr 14, 2026
5 of 6 checks passed

dependabot bot deleted the dependabot/nuget/WelsonJS.Augmented/WelsonJS.Launcher/log4net-3.3.0 branch April 14, 2026 02:45

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Bump log4net from 3.2.0 to 3.3.0#401

Bump log4net from 3.2.0 to 3.3.0#401
gnh1201 merged 1 commit intomasterfrom
dependabot/nuget/WelsonJS.Augmented/WelsonJS.Launcher/log4net-3.3.0

dependabot bot commented on behalf of github Apr 14, 2026

Uh oh!

what-the-diff bot commented Apr 14, 2026

Uh oh!

sonarqubecloud bot commented Apr 14, 2026

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Uh oh!

Conversation

dependabot bot commented on behalf of github Apr 14, 2026

3.3.0

What's Changed

New Contributors

Uh oh!

what-the-diff bot commented Apr 14, 2026

PR Summary

Uh oh!

sonarqubecloud bot commented Apr 14, 2026

Quality Gate passed

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant