OWASP SafeNuGet is an MsBuild task to warn about insecure NuGet libraries: https://nuget.org/packages/SafeNuGet/
Use of libraries with known vulnerabilities is a big problem. So big in fact it has now made it to the OWASP Top 10 2013. It's under A9 Using Known Vulnerable Components.
- Install the NuGet package
- Build
Great! If you want to contribute to the list of unsafe libraries, please create a pull request, register it as an issue or email me at erlend.oftedal@owasp.org.
Code contributions are also very welcome. Fork and create a pull request.
Register it here at github: issues