Skip to content
This repository has been archived by the owner on May 15, 2024. It is now read-only.

Transitive dependency security issue Microsoft NetCore Platforms 3.1.1 #284

Open
AFract opened this issue Nov 9, 2023 · 0 comments
Open

Transitive dependency security issue Microsoft NetCore Platforms 3.1.1 #284

AFract opened this issue Nov 9, 2023 · 0 comments

Comments

@AFract
Copy link

AFract commented Nov 9, 2023

Hello,

DotNetZip is a great library and I am happy to see it's still maintained.

However, when importing DotNetZip.Semverd (last version) in a .Net 7 project, I have this notice :
image

The related details are available here : https://devhub.checkmarx.com/cve-details/CVE-2021-31957/

Do you plan an update of the dependencies to prevent this please ?

Thank you very much
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@AFract