Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Packages with vulnerabilities #601

Open
jvsancho80 opened this issue Nov 20, 2024 · 9 comments
Open

Packages with vulnerabilities #601

jvsancho80 opened this issue Nov 20, 2024 · 9 comments

Comments

@jvsancho80
Copy link

There are 2 vulnerabilities when use de lastest version 3.1.1

image

image

image
@tom-englert
Copy link
Member

These are just reference assemblies of netstandard.
They will resolve to the latest versions of the installed framework on your machine at runtime.

So this is only an issue if you are running netcore 3.0 or earlier

@jvsancho80
Copy link
Author

I use Net 8

@tom-englert
Copy link
Member

So you're safe

@ltrzesniewski
Copy link
Member

We could make a new release, that would drop the netstandard1.0 target and upgrade it to netstandard2.0 so nuget would be happy.

@tom-englert
Copy link
Member

But it's already 2.0

@ltrzesniewski
Copy link
Member

Yeah, in code, but the release dates from 2021 and it's 1.0 there.

@jvsancho80
Copy link
Author

The vulnerability is in .Net 8

@tom-englert
Copy link
Member

@jvsancho80: 3.1.2 has the latest dependencies

@jvsancho80
Copy link
Author

Ok. Thanks.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@ltrzesniewski @tom-englert @jvsancho80