SharpDocx The transitive dependent package System.Text.RegularExpressions 4.3.0 has a vulnerability.

The transitive dependent package System.Text.RegularExpressions 4.3.0 has a vulnerability.

Open guogangj opened this issue 11 months ago • 0 comments

Visual Studio 2022 shows this warning: I traced the dependency chain and found that the problematic package System.Text.RegularExpressions 4.3.0 is indirectly referenced from SharpDocx. Its dependency chain is as follows:

SharpDocx.2.4.0
  => Microsoft.CodeAnalysis.CSharp.2.10.0
    =>Microsoft.CodeAnalysis.Common.2.10.0
      =>System.Xml.XDocument.4.3.0
        => System.Xml.ReaderWriter.4.3.0
          => System.Text.RegularExpressions.4.3.0

Mar 22 '24 06:03 guogangj

SharpDocx SharpDocx copied to clipboard

The transitive dependent package System.Text.RegularExpressions 4.3.0 has a vulnerability.

SharpDocx
SharpDocx copied to clipboard