[Feature] Automatically remediate known vulnerabilities in dependencies by upgrading them. #13665

JonDouglas · 2024-07-31T20:20:34Z

NuGet Product(s) Involved

NuGet.exe, Visual Studio Package Management UI, MSBuild.exe, dotnet.exe, NuGet SDK

The Elevator Pitch

The CLI and VS tooling should be able to automatically remediate known vulnerabilities in dependencies by upgrading them. This issue tracks the PR design of #11549 which would provide this functionality through a new dotnet audit and dotnet audit fix command.

Additional Context and Details

No response

The text was updated successfully, but these errors were encountered:

nkolev92 · 2024-08-12T22:03:07Z

Dup in #13372.

I see you're tracking this in another place, can you dup them out @JonDouglas?
Feel free to ping me if needed.

nkolev92 · 2024-08-19T21:12:26Z

Dup of #13372.

JonDouglas added Type:Feature Triage:Untriaged labels Jul 31, 2024

martinrrm added Area:NuGetAudit Product:dotnet.exe and removed Triage:Untriaged labels Jul 31, 2024

nkolev92 closed this as not planned Won't fix, can't repro, duplicate, stale Aug 19, 2024

nkolev92 added the Resolution:Duplicate This issue appears to be a Duplicate of another issue label Aug 19, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[Feature] Automatically remediate known vulnerabilities in dependencies by upgrading them. #13665

[Feature] Automatically remediate known vulnerabilities in dependencies by upgrading them. #13665

JonDouglas commented Jul 31, 2024

nkolev92 commented Aug 12, 2024

nkolev92 commented Aug 19, 2024

[Feature] Automatically remediate known vulnerabilities in dependencies by upgrading them. #13665

[Feature] Automatically remediate known vulnerabilities in dependencies by upgrading them. #13665

Comments

JonDouglas commented Jul 31, 2024

NuGet Product(s) Involved

The Elevator Pitch

Additional Context and Details

nkolev92 commented Aug 12, 2024

nkolev92 commented Aug 19, 2024