search

waf / CSharpRepl

A command line C# REPL with syntax highlighting – explore the language, libraries and nuget packages interactively.
https://fuqua.io/CSharpRepl/
Mozilla Public License 2.0
2.76k stars 106 forks source link

Update "NuGet.*" packages to 6.8.1 (CVE-2024-0057) #330

Closed atifaziz closed 6 months ago

atifaziz commented 7 months ago

This PR addresses a critical vulnerability identified in NuGet.Packaging 6.8.0. See CVE-2024-0057, “NuGet Client Security Feature Bypass Vulnerability” for more information.

To be on the conservative side, I've updated all **NuGet.*** packages to the next patch version 6.8.1 that's not flagged.

codecov[bot] commented 7 months ago

Codecov Report

All modified and coverable lines are covered by tests :white_check_mark:

Comparison is base (e41f024) 77.5% compared to head (80676de) 77.6%.

Additional details and impacted files ```diff @@ Coverage Diff @@ ## main #330 +/- ## ===================================== Coverage 77.5% 77.6% ===================================== Files 83 83 Lines 5597 5597 Branches 735 734 -1 ===================================== + Hits 4342 4346 +4 + Misses 987 984 -3 + Partials 268 267 -1 ```

:umbrella: View full report in Codecov by Sentry.
:loudspeaker: Have feedback on the report? Share it here.

waf commented 6 months ago

Thank you!