DeepCloner icon indicating copy to clipboard operation
DeepCloner copied to clipboard

Published 20 hours ago verified publisher icon force-net

Netstandard upgrade

Open PawelLorenc opened this issue 10 months ago • 2 comments

DeepCloner is currently targeted at Netstandard 1.3, which, along with this version of netstandard, downloads the system.text.regularexpressions and system.net.http packages that have vulnerabilities.

Is it possible to target DeepCloner at Netstandard 2.0 to eliminate these vulnerabilities?

PawelLorenc avatar Apr 10 '24 10:04 PawelLorenc

Ok. I did not think that targeting to lower version of framework will all such dependencies, looks strange, because it does not require this packages and newer version of dotnet core should use related packages. But it simpler to add target for netstandard 2.0 to investigate this issue. I'll do this when I will find some time

force-net avatar Apr 10 '24 11:04 force-net

You do not need to retarget anything. Just replace NETStandard.Library with the most actual one. Done.

@PawelLorenc If its important to your project just add newest NETStandard.Library with nuget. DeepCloner will automatically switch to the newer version.

swtrse avatar Jul 27 '24 21:07 swtrse