RestSharp vulnerability #72
Comments
|
I am seeing this too, I don't want to revert to a vulnerable version of RestSharp just to get the TaxJar client to work. It would be great if the could get this fixed and pushed to nuget. |
|
Seeing same problem. Further investigation on the project shows RestSharp will work v110.2.0 but will break on v111.0.0+ without code changes to Taxjar.net library code. However, still seeing the original issue posted here on v110.2.0. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Issue
This library has a dependency on RestSharp >= 108.0.3
There is a vulnerability with RestSharp library that was fixed in 112.0.0 CVE-2024-45302 - however this version of RestSharp causes a crash when initializing an instance of
TaxjarApidue to a constructor's signature having changed (presumably)Repro:
var api = new TaxjarApi("....api key");Exception:
Would be great if the version of RestSharp used by this library is updated, especially as users of this library can pass in headers into the instance of the RestSharp client created by this library.
The text was updated successfully, but these errors were encountered: