Closed bgaprogrammer closed 1 year ago
Where is it marked as vulnerable? I don't see it on NuGet:
I can see the warning in Visual Studio and our local installation of Checkmarx is also warning us of the vulnerability.
I don't see any such information in Microsoft.Data.SqlClient security advisory but if you send a PR I'll merge it.
Done in #62
The version 4.1.0 of Microsoft.Data.SqlClient is being marked as containing vulnerabilities in one of his transitive dependencies. A quick fix is just to upgrade it to the current latest 5.1.1 in the SqlServer wrapper.