You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
and a few other places refer to Newtonsoft 13.0.0.0 which is affected by GHSA-5crp-9r3c-p9vr
suggest to upgrade to 13.0.0.0.1 everywhere to silence dependency security scanners.
Steps to reproduce
Scan dotnet sdk 6.0.425 release with a security scanner, which finds the vulnerable version referenced in usr/share/dotnet/sdk/6.0.425/testhost.deps.json
Expected behavior
No security scanner warnings
Actual behavior
triggers on above security advisory
Environment
SUSE Linux Enterprise 15
The text was updated successfully, but these errors were encountered:
Description
vstest/temp/testhost/testhost.deps.json
Line 18 in 07acde2
suggest to upgrade to 13.0.0.0.1 everywhere to silence dependency security scanners.
Steps to reproduce
Scan dotnet sdk 6.0.425 release with a security scanner, which finds the vulnerable version referenced in
usr/share/dotnet/sdk/6.0.425/testhost.deps.json
Expected behavior
No security scanner warnings
Actual behavior
triggers on above security advisory
Environment
SUSE Linux Enterprise 15
The text was updated successfully, but these errors were encountered: