[PM-5052] Upgrade to .NET 8 (#3461)

* Upgrade to .NET 8 * Linting * Clean up old JSON deserialization code * More .NET 8-oriented linting * Light feedback * Get rid of old test we don't know the root issue for * Fix a new test * Remove now-unnecessary Renovate constraint * Use Any() * Somehow a 6.0 tooling config we don't need snuck back in * Space out properties that always change per release * Bump a few core packages since the last update
2026-01-03 17:14:00 +00:00 · 2024-02-05 13:03:42 -05:00
parent 3c5e9ac1aa
commit ae1fdb0992
38 changed files with 82 additions and 132 deletions
--- a/src/Core/Utilities/SecurityHeadersMiddleware.cs
+++ b/src/Core/Utilities/SecurityHeadersMiddleware.cs
@@ -15,13 +15,13 @@ public sealed class SecurityHeadersMiddleware
    public Task Invoke(HttpContext context)
    {
        // https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
-        context.Response.Headers.Add("x-frame-options", new StringValues("SAMEORIGIN"));
+        context.Response.Headers.Append("x-frame-options", new StringValues("SAMEORIGIN"));

        // https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-XSS-Protection
-        context.Response.Headers.Add("x-xss-protection", new StringValues("1; mode=block"));
+        context.Response.Headers.Append("x-xss-protection", new StringValues("1; mode=block"));

        // https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Content-Type-Options
-        context.Response.Headers.Add("x-content-type-options", new StringValues("nosniff"));
+        context.Response.Headers.Append("x-content-type-options", new StringValues("nosniff"));

        return _next(context);
    }