microsoft · Ayaz-Microsoft · Apr 21, 2026 · May 1, 2026 · May 1, 2026 · May 1, 2026
@@ -15,12 +15,12 @@ jobs:
     name: azd template validation
     environment: production
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v6
 
       - name: Set timestamp
         run: echo "HHMM=$(date -u +'%H%M')" >> $GITHUB_ENV
 
-      - uses: microsoft/template-validation-action@v0.4.3
+      - uses: microsoft/template-validation-action@v0.4.4
         with:
           validateAzd: ${{ vars.TEMPLATE_VALIDATE_AZD }}
           validateTests: ${{ vars.TEMPLATE_VALIDATE_TESTS }}

@@ -32,7 +32,7 @@ jobs:
         uses: Azure/setup-azd@v2
 
       - name: Login to Azure
-        uses: azure/login@v2
+        uses: azure/login@v3
         with:
           client-id: ${{ secrets.AZURE_CLIENT_ID }}
           tenant-id: ${{ secrets.AZURE_TENANT_ID }}

@@ -24,7 +24,7 @@ jobs:
       - name: Get changed markdown files (PR only)
         id: changed-markdown-files
         if: github.event_name == 'pull_request'
-        uses: tj-actions/changed-files@22103cc46bda19c2b464ffe86db46df6922fd323 # v46
+        uses: tj-actions/changed-files@9426d40962ed5378910ee2e21d5f8c6fcbf2dd96 # v46
         with:
           files: |
             **/*.md

@@ -70,7 +70,7 @@ jobs:
 
       - name: Login to Azure
         if: ${{ github.ref_name == 'main' || github.ref_name == 'dev' || github.ref_name == 'demo' || github.ref_name == 'hotfix' || github.ref_name == 'dependabotchanges' }}
-        uses: azure/login@v2
+        uses: azure/login@v3
         with:
           client-id: ${{ secrets.AZURE_CLIENT_ID }}
           tenant-id: ${{ secrets.AZURE_TENANT_ID }}
@@ -140,7 +140,7 @@ jobs:
             ${{ steps.registry.outputs.ext_registry }}/contentprocessorweb:${{ env.DATE_TAG }}
 
       - name: Build and Push ContentProcessorWorkflow Docker image
-        uses: docker/build-push-action@v6
+        uses: docker/build-push-action@v7
         with:
           context: ./src/ContentProcessorWorkflow
           file: ./src/ContentProcessorWorkflow/Dockerfile

@@ -72,7 +72,7 @@ jobs:
         # your codebase is analyzed, see https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/codeql-code-scanning-for-compiled-languages
     steps:
     - name: Checkout repository
-      uses: actions/checkout@v4
+      uses: actions/checkout@v6
 
     # Initializes the CodeQL tools for scanning.
     - name: Initialize CodeQL

@@ -36,7 +36,7 @@ jobs:
         uses: actions/checkout@v6
 
       - name: Login to Azure
-        uses: azure/login@v2
+        uses: azure/login@v3
         with:
           client-id: ${{ secrets.AZURE_CLIENT_ID }}
           tenant-id: ${{ secrets.AZURE_TENANT_ID }}
@@ -282,7 +282,7 @@ jobs:
       ENVIRONMENT_NAME: ${{ needs.deploy.outputs.ENVIRONMENT_NAME }}
     steps:
       - name: Login to Azure
-        uses: azure/login@v2
+        uses: azure/login@v3
         with:
           client-id: ${{ secrets.AZURE_CLIENT_ID }}
           tenant-id: ${{ secrets.AZURE_TENANT_ID }}

@@ -200,7 +200,7 @@ jobs:
           echo "✅ All input parameters validated successfully!"
 
       - name: Login to Azure
-        uses: azure/login@v2
+        uses: azure/login@v3
         with:
           client-id: ${{ secrets.AZURE_CLIENT_ID }}
           tenant-id: ${{ secrets.AZURE_TENANT_ID }}

@@ -217,7 +217,7 @@ jobs:
         uses: Azure/setup-azd@v2
 
       - name: Login to Azure
-        uses: azure/login@v2
+        uses: azure/login@v3
         with:
           client-id: ${{ secrets.AZURE_CLIENT_ID }}
           tenant-id: ${{ secrets.AZURE_TENANT_ID }}

@@ -217,7 +217,7 @@ jobs:
         uses: Azure/setup-azd@v2
 
       - name: Login to Azure
-        uses: azure/login@v2
+        uses: azure/login@v3
         with:
           client-id: ${{ secrets.AZURE_CLIENT_ID }}
           tenant-id: ${{ secrets.AZURE_TENANT_ID }}

@@ -322,7 +322,7 @@ jobs:
         uses: actions/checkout@v6
 
       - name: Login to Azure
-        uses: azure/login@v2
+        uses: azure/login@v3
         with:
           client-id: ${{ secrets.AZURE_CLIENT_ID }}
           tenant-id: ${{ secrets.AZURE_TENANT_ID }}

@@ -49,7 +49,7 @@ jobs:
         uses: docker/setup-buildx-action@v4
 
       - name: Log in to Azure
-        uses: azure/login@v2
+        uses: azure/login@v3
         with:
           client-id: ${{ secrets.AZURE_CLIENT_ID }}
           tenant-id: ${{ secrets.AZURE_TENANT_ID }}
@@ -95,7 +95,7 @@ jobs:
             ${{ secrets.ACR_TEST_LOGIN_SERVER }}/contentprocessorweb:${{ steps.generate_docker_tag.outputs.IMAGE_TAG }}_${{ github.run_number }}
 
       - name: Build and Push ContentProcessorWorkflow Docker image
-        uses: docker/build-push-action@v6
+        uses: docker/build-push-action@v7
         env:
           DOCKER_BUILD_SUMMARY: false
         with:

@@ -42,7 +42,7 @@ jobs:
           python-version: '3.13'
 
       - name: Login to Azure
-        uses: azure/login@v2
+        uses: azure/login@v3
         with:
           client-id: ${{ secrets.AZURE_CLIENT_ID }}
           tenant-id: ${{ secrets.AZURE_TENANT_ID }}

@@ -30,7 +30,7 @@ jobs:
           python-version: '3.12'
 
       - name: Login to Azure
-        uses: azure/login@v2
+        uses: azure/login@v3
         with:
           client-id: ${{ secrets.AZURE_CLIENT_ID }}
           tenant-id: ${{ secrets.AZURE_TENANT_ID }}

@@ -82,7 +82,7 @@ jobs:
           github.event_name == 'pull_request' &&
           github.event.pull_request.head.repo.fork == false &&
           env.skip_backend_tests == 'false'
-        uses: MishaKav/pytest-coverage-comment@26f986d2599c288bb62f623d29c2da98609e9cd4  # v1.6.0
+        uses: MishaKav/pytest-coverage-comment@dd5b80bde6d16941f336518e92929e89069d8451  # v1.7.2
         with:
           pytest-xml-coverage-path: src/tests/ContentProcessor/coverage.xml
           junitxml-path: src/tests/ContentProcessor/pytest.xml
@@ -97,7 +97,7 @@ jobs:
 
     steps:
       - name: Checkout code
-        uses: actions/checkout@v5
+        uses: actions/checkout@v6
 
       - name: Set up Python
         uses: actions/setup-python@v6
@@ -139,7 +139,7 @@ jobs:
 
     steps:
       - name: Checkout code
-        uses: actions/checkout@v5
+        uses: actions/checkout@v6
 
       - name: Set up Python
         uses: actions/setup-python@v6

@@ -23,10 +23,10 @@ jobs:
     runs-on: ubuntu-latest
     steps:
       - name: Checkout Code
-        uses: actions/checkout@v4
+        uses: actions/checkout@v6
 
       - name: Set up Python
-        uses: actions/setup-python@v5
+        uses: actions/setup-python@v6
         with:
           python-version: '3.11'
 
@@ -62,7 +62,7 @@ jobs:
 
       - name: Upload validation results
         if: always()
-        uses: actions/upload-artifact@v4
+        uses: actions/upload-artifact@v7
         with:
           name: bicep-validation-results
           path: |

@@ -1,28 +1,28 @@
 annotated-types==0.7.0
 azure-ai-inference==1.0.0b9
 azure-appconfiguration==1.8.0
-azure-core==1.39.0
-azure-identity==1.26.0b1
+azure-core==1.40.0
+azure-identity==1.26.0b2
 azure-monitor-events-extension==0.1.0
-azure-monitor-opentelemetry==1.6.10
-azure-storage-blob==12.29.0b1
-azure-storage-queue==12.16.0b1
-certifi==2026.2.25
+azure-monitor-opentelemetry==1.8.7
+azure-storage-blob==12.30.0b1
+azure-storage-queue==12.17.0b1
+certifi==2026.4.22
 cffi==2.0.0
-charset-normalizer==3.4.6
-click==8.3.1
+charset-normalizer==3.4.7
+click==8.3.3
 colorama==0.4.6
 coverage==7.13.5
-cryptography==46.0.7
+cryptography==47.0.0
 dnspython==2.8.0
-idna==3.11
+idna==3.17
 iniconfig==2.3.0
 isodate==0.7.2
 mongomock==4.3.0
-msal==1.35.1
+msal==1.36.0
 msal-extensions==1.3.1
 numpy==2.4.4
-packaging==26.0
+packaging==26.2
 pandas==3.0.2
 pdf2image==1.17.0
 pillow==12.2.0
@@ -31,24 +31,24 @@ poppler-utils==0.1.0
 pycparser==3.0
 pydantic==2.13.3
 pydantic-core==2.46.3
-pydantic-settings==2.13.1
+pydantic-settings==2.14.0
 pygments==2.20.0
 pyjwt==2.12.1
-pymongo==4.16.0
+pymongo==4.17.0
 pytest==9.0.3
 pytest-asyncio==1.3.0
 pytest-cov==7.1.0
 pytest-mock==3.15.1
 python-dateutil==2.9.0.post0
 python-dotenv==1.2.2
 pytz==2026.1.post1
-regex==2026.3.32
+regex==2026.4.4
 requests==2.33.1
-ruff==0.15.8
+ruff==0.15.12
 sentinels==1.1.1
 six==1.17.0
 tiktoken==0.12.0
 typing-extensions==4.15.0
 typing-inspection==0.4.2
-tzdata==2025.3
+tzdata==2026.2
 urllib3==2.7.0
@@ -6,27 +6,27 @@ readme = "README.md"
 requires-python = ">=3.12"
 dependencies = [
     "azure-appconfiguration==1.8.0",
-    "azure-identity==1.26.0b1",
-    "azure-storage-blob==12.29.0b1",
-    "azure-storage-queue==12.16.0b1",
-    "certifi==2026.2.25",
-    "fastapi[standard]==0.135.2",
+    "azure-identity==1.26.0b2",
+    "azure-storage-blob==12.30.0b1",
+    "azure-storage-queue==12.17.0b1",
+    "certifi==2026.4.22",
+    "fastapi[standard]==0.136.1",
     "poppler-utils==0.1.0",
     "pydantic==2.13.3",
-    "pydantic-settings==2.13.1",
+    "pydantic-settings==2.14.0",
     "pygments==2.20.0",
-    "pymongo==4.16.0",
+    "pymongo==4.17.0",
     "python-dotenv==1.2.2",
     "python-multipart==0.0.27",
     "starlette==1.0.0",
-    "uvicorn[standard]==0.42.0",
+    "uvicorn[standard]==0.46.0",
     "h11==0.16.0",
     "urllib3~=2.7.0",
     "opentelemetry-api==1.40.0",
-    "sas-cosmosdb==0.1.4",
+    "sas-cosmosdb==0.1.5",
     "azure-monitor-events-extension>=0.1.0",
     "azure-monitor-opentelemetry==1.8.7",
-    "cryptography==46.0.7",
+    "cryptography==47.0.0",
     "pyjwt==2.12.1",
     "jsonschema==4.25.1",
 ]
@@ -39,8 +39,8 @@ dev = [
     "pytest-cov==7.1.0",
     "pytest-mock==3.15.1",
     "coverage==7.13.5",
-    "pre-commit==4.5.1",
-    "ruff==0.15.8",
+    "pre-commit==4.6.0",
+    "ruff==0.15.12",
 ]
 
 [tool.ruff.format]