Skip to content

High severity vulnerability in Newtonsoft.Json 9.0.1 reported by Snyk #459

New issue
New issue
Closed
#460
Closed
High severity vulnerability in Newtonsoft.Json 9.0.1 reported by Snyk#459
#460
Assignees
armando-rodriguez-cko
@wojciechrak

Description

@wojciechrak
wojciechrak
opened on Mar 13, 2025

Environment

  • Checkout SDK version: 4.6.0
  • Platform and version: ANY
  • Operating System and version: ANY

Description

CheckoutSDK 4.6.0 uses Newtonsoft.Json 9.0.1 which contains HIGH (7.5 CVSS) vulnerability.
Snyk link: https://security.snyk.io/vuln/SNYK-DOTNET-NEWTONSOFTJSON-2774678

Proposed Solution

Update Newtonsoft.Json to at least v13.0.1 to mitigate the vulnerability.

  • I may be able to implement this feature

Metadata

Metadata

Assignees

Labels

No labels
No labels

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions