Many NuGet packages are not updated regularly, which can lead to security vulnerabilities, compatibility issues, and outdated dependencies. It's challenging for users to quickly identify packages that are not actively maintained or updated.
The Elevator Pitch
NuGet.org could enforce a policy that ensures package authors keep their packages up to date. If a newer version has not been published for a certain period, NuGet.org could:
Display a visual indicator on NuGet.org to highlight outdated packages.
Notify package owners so they can take appropriate action.
Implement a protocol change allowing NuGet.Client to display this information for package consumers.
This proposal complements the existing package quality score spec by adding mechanisms to further improve package maintenance and transparency.
Additional Context and Details
Keeping NuGet packages up to date is crucial for maintaining security, reliability, and performance. Developers need a clear indication of which packages are being actively maintained and which are outdated. By implementing these features, NuGet.org would help developers make informed decisions and encourage package maintainers to provide timely updates, improving the overall health of the ecosystem.
Related Problem
Many NuGet packages are not updated regularly, which can lead to security vulnerabilities, compatibility issues, and outdated dependencies. It's challenging for users to quickly identify packages that are not actively maintained or updated.
The Elevator Pitch
NuGet.org could enforce a policy that ensures package authors keep their packages up to date. If a newer version has not been published for a certain period, NuGet.org could:
This proposal complements the existing package quality score spec by adding mechanisms to further improve package maintenance and transparency.
Additional Context and Details
Keeping NuGet packages up to date is crucial for maintaining security, reliability, and performance. Developers need a clear indication of which packages are being actively maintained and which are outdated. By implementing these features, NuGet.org would help developers make informed decisions and encourage package maintainers to provide timely updates, improving the overall health of the ecosystem.