You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
A security vulnerability, GHSA-w3x6-4m5h-cxqf, has been reported on a dependency used by a project in the master branch of this repository.
Note
This does not necessarily mean any released packages or applications from this branch use the dependency in a way that exposes the vulnerability.
It is recommended for users to investigate and take action if necessary until the dependency can be updated.
A PR to update the dependency to a non-vulnerable version will be raised as soon as possible. Not all dependencies in all branches require a release, but if one is required it will be published shortly after the PR is merged.
Subscribe to this issue to get updates on Particular's work to address this dependency vulnerability.
Symptoms
When a project has the setting NuGetAuditMode set to all, at build time there are warnings about vulnerable transitive dependencies related to packages released from this repository.
A security vulnerability, GHSA-w3x6-4m5h-cxqf, has been reported on a dependency used by a project in the
masterbranch of this repository.Note
This does not necessarily mean any released packages or applications from this branch use the dependency in a way that exposes the vulnerability.
It is recommended for users to investigate and take action if necessary until the dependency can be updated.
A PR to update the dependency to a non-vulnerable version will be raised as soon as possible. Not all dependencies in all branches require a release, but if one is required it will be published shortly after the PR is merged.
Subscribe to this issue to get updates on Particular's work to address this dependency vulnerability.
Symptoms
When a project has the setting NuGetAuditMode set to
all, at build time there are warnings about vulnerable transitive dependencies related to packages released from this repository.How to take immediate action if necessary
Microsoft has detailed guidance on how to take action when a known vulnerability is reported.