resolve critical severity vulnerability, refresh versions, optimise for C# 12, etc #3
Description
- below was submitted on PS Discussion tab
- please also add all the juicy "Working with Roslyn" code (absent from this code repo)
- I have cranked up a PR (imminent) to address Issue herein, so hope is acceptable
This course was released 30Nov 2022 [updated 6Mar 2024] and the code [the PS Exercise files only contains 3x .PDF and 1x .RTF files] can be found at URLs
https://github.com/FeynmanF...
[updated 12Jul 2023] but still uses TFM=net6.0
When compiled VS raises NU1904 critical severity vulnerability Warning [e.g. as below] for 2 projects (TitanicExplorer and TitanicExplorer.Scripting.Tests)
using NuGet package System.Linq.Dynamic.Core v1.2.18 dependency
| date (DMY) | version | vulnerable? |
|---|---|---|
| 07/03/2022 | 1.2.18 | Y |
| 05/02/2023 | 1.2.25 | Y |
| 03/03/2023 | 1.3.0 | N |
| 31/05/2024 | 1.4.0 | N |
so assets & dependencies should be updated [suggested all projects to TFM=net8.0 as LTS and latest dependent releases].
details at https://github.com/advisori...
Severity Code Description Project File Line Suppression State Details
Warning NU1904 Package 'System.Linq.Dynamic.Core' 1.2.18 has a known critical severity vulnerability, https://github.com/advisori... TitanicExplorer.Scripting F:\Dev\csharp-expression-trees\TitanicExplorer.Scripting\TitanicExplorer.Scripting.csproj 1