PackageVulnerabilityChecker 1.0.3

.NET 8.0 This package targets .NET 8.0. The package is compatible with this framework or higher. 
dotnet tool install --global PackageVulnerabilityChecker --version 1.0.3
This package contains a .NET tool you can call from the shell/command line. 
dotnet new tool-manifest
                    


                            if you are setting up this repo
                        

                    

                
dotnet tool install --local PackageVulnerabilityChecker --version 1.0.3
This package contains a .NET tool you can call from the shell/command line. 
#tool dotnet:?package=PackageVulnerabilityChecker&version=1.0.3
                    


                    

                
nuke :add-package PackageVulnerabilityChecker --version 1.0.3

PackageVulnerabilityChecker v1.0.3

Detect and audit NuGet package versions and vulnerabilities in your .NET projects.

📦 What is it?

PackageVulnerabilityChecker is a lightweight yet powerful CLI tool that scans your .csproj files to:

  • List NuGet packages you're using.
  • Check if they are up to date.
  • Detect known vulnerabilities via Sonatype OSS Index.
  • Generate clear, color-coded reports with upgrade suggestions and alerts.

It helps keep your dependencies secure and current with minimal effort.

✨ New in v1.0.3

This release introduces important improvements to help you integrate the tool seamlessly into your CI/CD pipelines:

  • --fail-on-vulnerabilities
    When this flag is active, the tool will cause the pipeline to fail if any vulnerabilities are detected, enabling strict enforcement of security standards during automated builds.

  • --output <filename>.json
    Generate a detailed vulnerability report in JSON format with the filename you specify.
    The file is saved at the root of your project, making it easy to consume or publish as a build artifact.

  • Improved visual output in the console with enhanced color-coding for better readability.

🚀 Getting Started

dotnet tool install --global PackageVulnerabilityChecker  
packagevulnerabilitychecker path/to/your/Project.csproj
Product Compatible and additional computed target framework versions.
.NET net8.0 is compatible.  net8.0-android was computed.  net8.0-browser was computed.  net8.0-ios was computed.  net8.0-maccatalyst was computed.  net8.0-macos was computed.  net8.0-tvos was computed.  net8.0-windows was computed.  net9.0 was computed.  net9.0-android was computed.  net9.0-browser was computed.  net9.0-ios was computed.  net9.0-maccatalyst was computed.  net9.0-macos was computed.  net9.0-tvos was computed.  net9.0-windows was computed.  net10.0 was computed.  net10.0-android was computed.  net10.0-browser was computed.  net10.0-ios was computed.  net10.0-maccatalyst was computed.  net10.0-macos was computed.  net10.0-tvos was computed.  net10.0-windows was computed. 
Compatible target framework(s)
Included target framework(s) (in package)
Learn more about Target Frameworks and .NET Standard.

This package has no dependencies.

Version Downloads Last Updated
1.0.3 193 7/27/2025
1.0.2 278 7/13/2025 1.0.2 is deprecated because it has critical bugs.
1.0.0 280 7/13/2025 1.0.0 is deprecated because it has critical bugs.