Quantcast
Channel: Active questions tagged nuget-package - Stack Overflow
Viewing all articles
Browse latest Browse all 3067

How to resolve NuGet Transitive Packages with vulnerabilities

$
0
0

I have a project that requires the System.ServiceModel.Http NuGet package.

That particular package references 6 other packages transitively.

One of the transitive packages has an identified vulnerability (System.Security.Cryptography.Pkcs).

I know I can promote the package to Top-level and then control the version. But my question is, is there any way to update the version of the transitive package without promoting it?

screenshot


Viewing all articles
Browse latest Browse all 3067

Trending Articles



<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>