Skip to content

Commit 251e4ea

Browse files
committed
Force latest version for System.Text.RegularExpressions 4.3.1 due to known high severity vulnerability, GHSA-cmhx-cq75-c4mj
1 parent c38a67e commit 251e4ea

File tree

1 file changed

+7
-0
lines changed

1 file changed

+7
-0
lines changed

src/Aqua.protobuf-net/Aqua.protobuf-net.csproj

Lines changed: 7 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -19,6 +19,13 @@
1919
and no workaround has been found yet. Contributions are welcome ;)
2020
-->
2121
<PackageReference Include="protobuf-net" Version="2.4.8" />
22+
23+
<!--
24+
NOTE: System.Text.RegularExpressions 4.3.0 has a known high severity vulnerability, https://github.com/advisories/GHSA-cmhx-cq75-c4mj
25+
Force latest version for transient dependency recevied via protobuf-net 2.4.8
26+
-->
27+
<PackageReference Include="System.Text.RegularExpressions" Version="4.3.1" />
28+
2229
</ItemGroup>
2330

2431
<ItemGroup>

0 commit comments

Comments
 (0)