Giters

Stef16Robbe / list-nuget-vulns

Listing which NuGet packages in your .net project use vulnerable packages.

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

list-nuget-vulns

the idea:

dotnet list package --vulnerable --include-transitive only shows that some package somewhere in ur project has a vulnerability. This script is going to show you what dependencies use the vulnerable package found, so you can update that specific package, or create an issue with the repo.

TODO:

  • read dotnet command info
  • parse info into obj
  • get all packages in solution
  • get all dependencies from each package
  • check in what 'tree' the vuln exists
  • show results in tree thingy(?)

About

Listing which NuGet packages in your .net project use vulnerable packages.

Languages

Language:Python 100.0%