Replies: 1 comment
-
When you say certain packages, do you mean vulnerable packages? If yes, Auditing package dependencies for security vulnerabilities might help. dotnet list package command has several options to display deprecated and/or vulnerable packages including transitive dependencies. Package source mapping might help to avoid downloading unwanted packages if the patterns are configured properly. The dotnet nuget trust command manages the trusted signers. By default, NuGet accepts all authors and repositories. These commands allow you to specify only a specific subset of signers whose signatures will be accepted, while rejecting all others. |
Beta Was this translation helpful? Give feedback.
-
What tools does Nuget offer to prevent installation of certain packages?
We would like to be notified when installing new/updating existing packages if they reference some unwanted packages.
Beta Was this translation helpful? Give feedback.
All reactions