News

The latest NuGet campaign was spotted by ReversingLabs on October 15, 2023, utilizing different typosquatting packages to install malware. Some of the packages seen in this campaign include: CData ...
The latest example is an attack campaign recently detected on NuGet Gallery, the repository for .NET packages, in which attackers use the inline tasks feature of the MSBuild code building tool to ...
NuGet isn't without flaws but I wouldn't use the term 'utter garbage'. Invest a few hours in the console commands, it'll improve your life vs the VS Package Manager. ...
In-Depth. How To Set Up an Internal NuGet Repository in PowerShell. Here's a simple way for an organization to stay in control of an ever-growing library of resources.
Threat actors are targeting and infecting .NET developers with cryptocurrency stealers delivered through the NuGet repository and impersonating multiple legitimate packages via typosquatting.
NuGet also allows you to attach searchable documentation to your package to ensure that a developer can find your package, recognize it and know what your code does. In that article, I showed how to ...
Microsoft responded to developer reports that two Microsoft package files, Microsoft.Bcl.Build and Microsoft.Bcl.Compression, have been breaking the NuGet package restore feature. In a .NET Framework ...