Auditing projects for package vulnerabilities during restore #12310
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
|
We use Nexus repo manager and Artifactory as local Nuget.org package mirrors, so it would be great if there was a way in the nuget.config file to specify that Nuget.org is used only for vulnerability lookup, not for package hosting. |
loic-sharma
reviewed
Dec 7, 2022
loic-sharma
reviewed
Dec 7, 2022
| | NU1904 | critical | | ||
|
|
||
| ```bash | ||
| Found 2 vulnerabilities (0 low, 1 moderate, 0 high, 1 critical) in 2 package(s) |
There was a problem hiding this comment.
What's the value in reporting severities with 0 hits? Would it be better to exclude those instead?
Suggested change
| Found 2 vulnerabilities (0 low, 1 moderate, 0 high, 1 critical) in 2 package(s) | |
| Found 2 vulnerabilities (1 moderate, 1 critical) in 2 package(s) | |
There was a problem hiding this comment.
Good idea, let's keep this open for discussion!
loic-sharma
reviewed
Dec 7, 2022
Co-authored-by: Loïc Sharma <737941+loic-sharma@users.noreply.github.com>
loic-sharma
reviewed
Dec 8, 2022
loic-sharma
reviewed
Dec 8, 2022
loic-sharma
reviewed
Dec 8, 2022
loic-sharma
reviewed
Dec 8, 2022
kapsiR
reviewed
Dec 8, 2022
|
This sounds very interesting, thanks @JonDouglas. I have a few comments:
It's quite common for an entire build to be run twice (feature branch and dev/main branch) for a change in environments with CI/CD. I think that for this to be useful, we should have an easy way of telling
It would be useful to have a way to make |
Any CLI switch basically doubles as an MSBuild property. We're proposing MSBuild properties for opting into auditing, so that automatically makes it available as a CLI switch. Example: |
nuget.org uses GitHub's advisories database, but other servers can use other data sources if they want
zivkan
reviewed
Feb 10, 2023
|
|
||
| It is **very important* that if the upstream sources link to the nuget.org vulnerability, the actual nuget.org urls are used wherever possible, as this would allow the client to easily deduplicate the vulnerability information. | ||
|
|
||
| ### Command Line Restore output |
There was a problem hiding this comment.
@JonDouglas FYI, I moved the vulnerability summary output on command line restores under "Future Possibilities" for two reasons. 1. So we can get a V1 of this feature out sooner. 2. I don't believe this proposal has been specced out well. I have a bunch of questions if we want to implement it.
For example, in the sample output, if there are non-vulerability warnings or errors, where in the output do they go? Before the vulnerability summary, or below with the sample vulerability warnings? If before, should vulerability warnings/errors be output twice, once between the summary once after?
What's the expected order of output when restoring a solution with many projects? Wait until all projects finish restoring, and then output all their summaries? Or output project summaries as each project finishes restoring, even if it means that the vulnerability summary for that project will be somewhere much earlier in the restore log?
When restoring a solution where the same package version is in multiple projects, should we de-duplicate the output?
Anyway, as I said, I think we can take this on in the future if we still think it's useful. Let's get a V1 of the feature done without it, and see how we and customers feel about it.
There was a problem hiding this comment.
I think some details, like the ones about the handling of multiple vulnerability for a package can still be in the main part as that's likely going to be done.
There was a problem hiding this comment.
Let's see what this shapes to be while working to answer the unknown. Thanks for being so thorough with questions to be answered.
nkolev92
reviewed
Feb 10, 2023
|
|
||
| It is **very important* that if the upstream sources link to the nuget.org vulnerability, the actual nuget.org urls are used wherever possible, as this would allow the client to easily deduplicate the vulnerability information. | ||
|
|
||
| ### Command Line Restore output |
There was a problem hiding this comment.
I think some details, like the ones about the handling of multiple vulnerability for a package can still be in the main part as that's likely going to be done.
nkolev92
approved these changes
Feb 14, 2023
zivkan
reviewed
Mar 2, 2023
zivkan
approved these changes
Mar 2, 2023
Jesser1971
added a commit
to Jesser1971/Home
that referenced
this pull request
Dec 7, 2024
commit e65e43b0725022d5644e9f1a5d5fadce03f5e7a4
Author: Olia Gavrysh <oliag@microsoft.com>
Date: Mon Nov 25 14:50:24 2024 -0800
Adding a proposal for the new CLI command to fix vulnerabilities
commit b69fc432d37bfd1310ccef0c7fd1b07f8926771b
Merge: f7a4b5e 012864e
Author: Jonatan Gonzalez <jgonz120@gmail.com>
Date: Tue Nov 19 14:57:49 2024 -0800
Merge pull request #13200 from NuGet/dev-jgonz-pmuiReadmeRendering
Add Tech Spec for rendering README in PM UI
commit 012864ed12ac6173e9d47693f3f6e602dea6be53
Author: Jonatan Gonzalez 🐱🌴 <jongonza@microsoft.com>
Date: Tue Nov 19 14:57:13 2024 -0800
fix typo
commit 42176e6484e725fe4825f98b6121270dd0f2d89d
Author: Jonatan Gonzalez 🐱🌴 <jongonza@microsoft.com>
Date: Tue Nov 19 14:14:50 2024 -0800
Renamed file
commit bace0ba41082b48bf8d55da860c615a55708fee4
Author: Jonatan Gonzalez 🐱🌴 <jongonza@microsoft.com>
Date: Fri Nov 8 17:35:15 2024 -0800
Rearranged a bit
commit efa004d4c5dbb93f802a9badc1ffaac5e82b3ec6
Author: Jonatan Gonzalez 🐱🌴 <jongonza@microsoft.com>
Date: Fri Nov 8 16:50:25 2024 -0800
Comments from PR
commit b26997dacf6cba11c4bf3e66f30c62970ef0a5dc
Author: Jonatan Gonzalez (HE/HIM) <jongonza@microsoft.com>
Date: Thu Nov 7 12:05:49 2024 -0800
Comments from PR
commit 9dbf57a37ab10ad794fcaf0316be3f1a4a9e0091
Author: Jonatan Gonzalez 🐱🌴 <jongonza@microsoft.com>
Date: Thu Nov 7 11:55:13 2024 -0800
Update questions
commit 73923d7dbc20688c19a98e52fbb14990c4fca74f
Author: Jonatan Gonzalez (HE/HIM) <jongonza@microsoft.com>
Date: Wed Nov 6 12:32:32 2024 -0800
Add caching
commit 0befa49f93086fc177cc44e40e5fd5943da0bdc1
Author: Jonatan Gonzalez (HE/HIM) <jongonza@microsoft.com>
Date: Wed Nov 6 12:23:10 2024 -0800
Update to reflect latest versions
commit 2ba8d99b9ad980b3d1786e89843a212866d60339
Author: Jonatan Gonzalez <jgonz120@gmail.com>
Date: Mon Nov 4 11:34:07 2024 -0800
Update accepted/2024/[TS]PMUI-Readme-rendering.md
Co-authored-by: Donnie Goodson <49205731+donnie-msft@users.noreply.github.com>
commit f7a4b5e6b0f48776f80a2782436204a2b86531b5
Author: Kartheek Penagamuri <52756182+kartheekp-ms@users.noreply.github.com>
Date: Tue Oct 22 15:54:22 2024 -0700
remove additional space from template.md file (#13846)
commit 24a65ffceed257161c889b18b6a97bfd5087d16f
Author: Jonatan Gonzalez (HE/HIM) <jongonza@microsoft.com>
Date: Mon Oct 21 13:14:37 2024 -0700
update to match current implementation
commit 3c9e768aacb0abf3c6f68f011249c6c8e837adee
Author: Joel Verhagen <jver@microsoft.com>
Date: Tue Oct 8 12:09:00 2024 -0700
Add spec for Trusted Publishers (OIDC auth for NuGet) (#13673)
* Add spec for Trusted Publishers (OIDC auth for NuGet)
* Address comments
Clarify branch, environment, and workflow filters.
Add note about 2FA
Fix typo.
Clarify existing NuGet auth flows
Require HTTPS for service index and ApiKeyService endpoint
Mentioned public marketplace for GitHub Action
* Update accepted/2024/trusted-publishers-oidc-for-nuget-push.md
Co-authored-by: Damon Tivel <dtivel@microsoft.com>
* Update accepted/2024/trusted-publishers-oidc-for-nuget-push.md
Co-authored-by: Damon Tivel <dtivel@microsoft.com>
* Address comments
* Update accepted/2024/trusted-publishers-oidc-for-nuget-push.technical.md
Co-authored-by: Damon Tivel <dtivel@microsoft.com>
* Add example sub, clarify API key caching
* Address comments
Renamed resource from ApiKeyService to TokenService to be a bit more flexible for the future.
* Add note about masking
* Address some comments
* Don't allow ID scoping and allowed action scoping
* Update accepted/2024/trusted-publishers-oidc-for-nuget-push.md
* Update accepted/2024/trusted-publishers-oidc-for-nuget-push.md
Co-authored-by: Damon Tivel <dtivel@microsoft.com>
* Update accepted/2024/trusted-publishers-oidc-for-nuget-push.technical.md
Co-authored-by: Damon Tivel <dtivel@microsoft.com>
* Add tag filtering to the proposal
---------
Co-authored-by: Damon Tivel <dtivel@microsoft.com>
commit 57bc0ad653765f0b4e030c1cc1ad1ef2405789a2
Author: Jonatan Gonzalez (HE/HIM) <jongonza@microsoft.com>
Date: Tue Oct 8 09:51:41 2024 -0700
Specify where local packages are rendered
commit fd04f14f2cb76f87251586ad4c1f04d2258fdac8
Author: Jonatan Gonzalez (HE/HIM) <jongonza@microsoft.com>
Date: Wed Sep 4 13:10:13 2024 -0700
Add note about exception handling
commit a6566796d961ec8bebe46b6302ef7d9a660eeebe
Author: Jonatan Gonzalez (HE/HIM) <jongonza@microsoft.com>
Date: Wed Sep 4 13:06:52 2024 -0700
Update to readmeuritemplate
commit 8e10802bdd3c3a7e6e471c1a4620e97b05866960
Author: Jonatan Gonzalez (HE/HIM) <jongonza@microsoft.com>
Date: Wed Aug 21 12:17:54 2024 -0700
Added more details
commit d4913b2d33f376ce60158552a9eb2dcd1a5bc26b
Merge: 6f4919c b0f53f1
Author: Donnie Goodson <49205731+donnie-msft@users.noreply.github.com>
Date: Wed Aug 21 07:41:37 2024 -0700
Move Owner Author Spec to Implemented folder
commit b0f53f17080f5830b0cecade225f78b98f87377a
Author: Donnie Goodson <49205731+donnie-msft@users.noreply.github.com>
Date: Tue Aug 20 12:52:57 2024 -0700
Move to Implemented
commit d9580d246dd13d521814b91573b47f8fbf975d1f
Author: Jonatan Gonzalez (HE/HIM) <jongonza@microsoft.com>
Date: Tue Jul 30 15:04:24 2024 -0700
Add implementation details
commit 9699056a25ec808ae6d9abec0afd9b80af87d396
Author: Jonatan Gonzalez 🐱🌴 <jongonza@microsoft.com>
Date: Thu Jul 11 16:55:59 2024 -0700
Update where the readme downl url will be documented
commit 0e68f5c9ebf67ddc5b9642b8d4af7a98e7548b9e
Author: Jonatan Gonzalez 🐱🌴 <jongonza@microsoft.com>
Date: Tue Jul 9 10:07:33 2024 -0700
update questions
commit 83047e5706104ef9feaa681bd4b3517d8c783203
Author: Jonatan Gonzalez 🐱🌴 <jongonza@microsoft.com>
Date: Mon Jul 8 16:24:29 2024 -0700
Update doc
commit 6f4919cf0819d64e48131b319e2e8d8c8861ee86
Merge: d73f25f 3b1cecf
Author: Donnie Goodson <49205731+donnie-msft@users.noreply.github.com>
Date: Mon Jun 17 17:28:48 2024 -0700
Update Owner Author spec to indicate author is always shown for IntelliCode Suggestions
commit 3b1cecf65e08da6e199a7d8896d5a7385d3aba7d
Author: Donnie Goodson <49205731+donnie-msft@users.noreply.github.com>
Date: Wed Jun 5 17:39:46 2024 -0400
Add screenshot
commit bc508cb44bdfb268f0af5ae325d1d2f3d93f32b5
Author: Donnie Goodson <49205731+donnie-msft@users.noreply.github.com>
Date: Wed Jun 5 15:57:07 2024 -0400
Update owner-author-pmui.md
commit d73f25ffc8a750576fe66a6112761a2ad73e1577
Author: Kartheek Penagamuri <52756182+kartheekp-ms@users.noreply.github.com>
Date: Fri Apr 26 15:15:18 2024 -0700
Support for NuGet authentication plugins deployed via .NET tools
commit 739e8644cedc3b41bb0bf363c5699e05223d5eea
Author: Advay Tandon <82980589+advay26@users.noreply.github.com>
Date: Tue Apr 16 15:45:37 2024 -0700
Update 'dotnet nuget why' output format (#13379)
commit 22c42b2be26ea0dcd4aeb9f00c6f1038c0b80068
Author: Jonatan Gonzalez (HE/HIM) <jongonza@microsoft.com>
Date: Tue Apr 16 12:39:46 2024 -0700
Updated spec
commit 5a72e2a2177ad04c697326e262b7ce42fe2ba821
Merge: fa97209 ecc95fa
Author: Svetlana Kofman <skofman@microsoft.com>
Date: Wed Apr 10 16:51:25 2024 -0700
Merge pull request #13386 from NuGet/skofman1-patch-1
Update CONTRIBUTING.md - Fix link to Issue-Triage-Policy
commit ecc95fa93c94e64db23e1e81da1c6bd01a167c21
Author: Svetlana Kofman <skofman@microsoft.com>
Date: Wed Apr 10 16:36:31 2024 -0700
Update CONTRIBUTING.md
Fix link to Issue-Triage-Policy
commit fa972093c3e68df2cadad8dea0900dfb7638e73a
Author: Nikolche Kolev <nikolce1kolev@gmail.com>
Date: Wed Apr 10 14:26:08 2024 -0700
Update Issue-Triage-Policy.md
commit ba03afdbac4b5c0073abb0e34ad04e2243bcdb94
Merge: a917440 9bed387
Author: Kartheek Penagamuri <52756182+kartheekp-ms@users.noreply.github.com>
Date: Thu Apr 4 16:52:11 2024 -0700
Update authentication experience for private Azure Artifacts feeds in C# Dev Kit MVP
commit a9174407f626e4819b058e788234dc1e40aa3370
Author: Jeff Kluge <jeffkl@microsoft.com>
Date: Wed Apr 3 15:34:54 2024 -0700
Update resourceManagement.yml (#13371)
Change Pipeline:Icebox to Priority:3
commit 9a810951fca431a4e31c17f77a9cc3748fc42241
Author: Jeff Kluge <jeffkl@microsoft.com>
Date: Wed Apr 3 15:30:45 2024 -0700
Update GitHubIssueTagger to watch Priority:3 issues instead of icebox (#13369)
commit 3f8a7e5ca02111f51ad893d3dcc9b10b77d3ec34
Author: Jeff Kluge <jeffkl@microsoft.com>
Date: Wed Apr 3 15:29:23 2024 -0700
Update Issue-Triage-Policy.md (#13370)
Update with new workflow of Priority:1, Priority:2, and Priority:3
commit 9bed38777bb550b0d0a7677a7a5e1d8d31faefa5
Author: Kartheek Penagamuri <52756182+kartheekp-ms@users.noreply.github.com>
Date: Tue Apr 2 15:12:57 2024 -0700
Update Azure Artifacts authentication instructions
commit fc9da076ec32b0bea423e9a38a1ce9bb598c05f2
Author: Kartheek Penagamuri <52756182+kartheekp-ms@users.noreply.github.com>
Date: Tue Apr 2 15:07:43 2024 -0700
Update authentication instructions for Azure Artifacts in vscode-commands.md
commit 093385c4a5d99cb614ac75656c3e9d8e60bc3bbd
Author: Nikolche Kolev <nikolce1kolev@gmail.com>
Date: Tue Mar 19 13:44:22 2024 -0700
Vulnerability checking in PC restore (#13154)
commit 20d21da78b301da1052858f756c15a57d7abd257
Author: Jonatan Gonzalez (HE/HIM) (from Dev Box) <jongonza@microsoft.com>
Date: Mon Mar 11 13:08:26 2024 -0700
update explanation
commit 389f0b4d6d2c9ffde9c771f78dba3d1e3734342d
Author: Jonatan Gonzalez (HE/HIM) (from Dev Box) <jongonza@microsoft.com>
Date: Mon Mar 11 13:00:57 2024 -0700
Update
commit ac75026444da95f8368c8eedb3328a9665b4dba8
Author: Jonatan Gonzalez (HE/HIM) (from Dev Box) <jongonza@microsoft.com>
Date: Mon Mar 11 12:37:13 2024 -0700
more updates
commit 13156d310a77e5675988b7d93fa5535af5239031
Author: Jonatan Gonzalez (HE/HIM) (from Dev Box) <jongonza@microsoft.com>
Date: Mon Mar 11 11:53:04 2024 -0700
updated
commit 344db7eccaa6235a1aca3e40dcb8ca12b165f44b
Author: Andy Zivkovic <zivkan@users.noreply.github.com>
Date: Fri Mar 8 22:45:39 2024 +0100
Feature spec for suppressing specific vulnerabilities (#12921)
commit 7cbad50f79e53aed5777592ec1bf7d5f74e60575
Author: Jonatan Gonzalez (HE/HIM) (from Dev Box) <jongonza@microsoft.com>
Date: Thu Mar 7 12:55:43 2024 -0800
Update tech spec
commit 1cc32a150f240147ddf780b502a6e2a41ed3decd
Author: Jonatan Gonzalez (HE/HIM) (from Dev Box) <jongonza@microsoft.com>
Date: Tue Mar 5 13:51:06 2024 -0800
Updated info abotu retrieving readme
commit 33ba5e80e7a609892fbe7baed145e241afd3143e
Merge: 99910e1 29e804d
Author: Jon Douglas <jodou@microsoft.com>
Date: Mon Mar 4 13:36:15 2024 -0600
Merge pull request #12874 from NuGet/mkArtakMSFT/releaseGrouping
Proposal for package grouping to enable release staging and release deprecation
commit 99910e173fe5b374bbfbeb36185ba0756f1a1eb1
Merge: 6637292 4e3eda9
Author: Alexandra Barry <89422562+albarry4@users.noreply.github.com>
Date: Thu Feb 15 14:01:03 2024 -0800
Merge pull request #13208 from NuGet/totally-not-interesting
NuGet in VS Code/C# Dev Kit MVP Proposal
commit c7c297eb1d1309cdca4c448a711fff0b948a3ea7
Author: Jonatan Gonzalez (HE/HIM) (from Dev Box) <jongonza@microsoft.com>
Date: Wed Feb 14 14:17:29 2024 -0800
Updated questions
commit 6637292d51dcb4b71ecf5952732d52772c6c1f78
Author: dotnet-policy-service[bot] <123482357+dotnet-policy-service[bot]@users.noreply.github.com>
Date: Mon Feb 12 15:07:40 2024 -0800
FabricBot: Onboarding to GitOps.ResourceManagement because of FabricBot decommissioning (#13215)
commit fd80d77036d66a015c7b487eac3ce60e089b13d6
Merge: 2872fa5 ecb5ec7
Author: Jonatan Gonzalez 🐱🌴 <jongonza@microsoft.com>
Date: Mon Feb 5 18:25:59 2024 -0800
Merge branch 'dev-jgonz-pmuiReadmeRendering' of https://github.com/NuGet/Home into dev-jgonz-pmuiReadmeRendering
commit 2872fa5ed26b05c79bd3d29c461595b93536ded8
Author: Jonatan Gonzalez 🐱🌴 <jongonza@microsoft.com>
Date: Mon Feb 5 18:19:51 2024 -0800
updates from PR
commit ecb5ec745e76972d8f3f533c10df35176bd15a3f
Author: Jonatan Gonzalez <jgonz120@gmail.com>
Date: Mon Feb 5 17:09:10 2024 -0800
Update accepted/2024/[TS]PMUI-Readme-rendering.md
Co-authored-by: Nigusu Solomon Yenework <59111203+Nigusu-Allehu@users.noreply.github.com>
commit 4e3eda9490122a456135caee0705d467d3ab4882
Author: albarry4 <albarry@microsoft.com>
Date: Tue Jan 30 15:02:09 2024 -0800
updated version from feedback
commit 29e804d911283b9f36fc2a4d3ca93e491e5801c0
Author: Artak M. <artakm@microsoft.com>
Date: Sat Jan 27 20:30:09 2024 -0800
Clarified group ownership
commit 753100cd4507a5620e0de77bd6a10985ac944a33
Author: Jonatan Gonzalez 🐱🌴 <jongonza@microsoft.com>
Date: Fri Jan 26 11:42:50 2024 -0800
Add file for PM UI design
commit cf469837673e416b5596a632c23e7ddf016bd111
Author: Artak <34246760+mkArtakMSFT@users.noreply.github.com>
Date: Thu Jan 25 20:50:48 2024 -0800
Update release-staging-and-deprecation.md
Moved the `Async behavior` part under the `Future considerations` section
commit 3e4ceaba18faf96e9ec017073f4d5b0080c01b4f
Merge: 7ac28f5 f22ead5
Author: Donnie Goodson <49205731+donnie-msft@users.noreply.github.com>
Date: Mon Jan 22 14:08:10 2024 -0800
Delete accepted/2023/image.png
commit f22ead57d1afdaa59c677861ae37d5568f8d0df8
Author: Donnie Goodson <49205731+donnie-msft@users.noreply.github.com>
Date: Mon Jan 22 12:41:24 2024 -0800
Delete accepted/2023/image.png
I must have mistakenly dropped this file in to the parent directory. It doesn't appear to be used.
commit dd4c3853853a7c5e99f7267fc9ddfe002a7b501a
Author: Artak M. <artakm@microsoft.com>
Date: Sun Jan 21 19:53:41 2024 -0800
Polish the writeup and fix some inconsistencies
commit 7ac28f59df1e77073310b49dfbcca272ce64f010
Author: Andy Zivkovic <zivkan@users.noreply.github.com>
Date: Mon Jan 22 12:17:24 2024 +1030
Spec: NuGetAudit without nuget.org as a package source (#12918)
commit 9973fc96f66af0e6da62fa9b9f819e93d31d98e0
Author: Artak <34246760+mkArtakMSFT@users.noreply.github.com>
Date: Sun Jan 21 17:20:05 2024 -0800
Moved the proposal to the `accepted` folder
commit ca68fecbda61306139d3a8d98ae1c0b8d19df25a
Author: Artak <34246760+mkArtakMSFT@users.noreply.github.com>
Date: Sun Jan 21 17:06:26 2024 -0800
Update proposed/2023/release-staging-and-deprecation.md
Co-authored-by: Erick Yondon <8766776+erdembayar@users.noreply.github.com>
commit 3b854d07f7cab94c02626d7727bbfd40abdbc7ae
Merge: 57f0b64 35c40b3
Author: Donnie Goodson <49205731+donnie-msft@users.noreply.github.com>
Date: Fri Jan 12 16:15:30 2024 -0800
Spec: Display Known Owners on the PM UI Browse Tab
commit 35c40b3c3e114071c40eb8d6346bb39b821f04c7
Author: Donnie Goodson <49205731+donnie-msft@users.noreply.github.com>
Date: Thu Jan 11 10:27:20 2024 -0800
Note that package sources can change owner over time
commit 1787b27a3134c418231eff5b6a5d80cacc0be614
Author: Donnie Goodson <49205731+donnie-msft@users.noreply.github.com>
Date: Thu Jan 11 10:23:57 2024 -0800
Rename Trusted Owner to Known Owner
commit 3b2d1ecef11fcbba2c76ea4f5d5e8a9a2bdbdcc8
Author: Donnie Goodson <49205731+donnie-msft@users.noreply.github.com>
Date: Tue Jan 9 11:31:53 2024 -0800
Redact fallback to author + wording touchups
commit b3bca62c8dd9103e6d91e3e32ef27ead60a0f5d8
Author: Donnie Goodson <49205731+donnie-msft@users.noreply.github.com>
Date: Thu Dec 7 11:53:39 2023 -0800
fix UriTemplate typo
commit e089a6051c3367a1ebd72085ba9b83593d4afea2
Author: Donnie Goodson <49205731+donnie-msft@users.noreply.github.com>
Date: Wed Dec 6 22:21:27 2023 -0800
Spec: Display Trusted Owners on the PM UI Browse Tab
commit 57f0b6496d44ea6a4d8cf4e56e33d67ce2f13594
Author: Nigusu Solomon Yenework <59111203+Nigusu-Allehu@users.noreply.github.com>
Date: Tue Jan 9 13:38:43 2024 -0500
Add `problems` value to `dotnet package search` JSON output (#13133)
commit c7e2721018a384d4b5aa1e012fdaf84455afb30c
Author: Nigusu Solomon Yenework <59111203+Nigusu-Allehu@users.noreply.github.com>
Date: Thu Jan 4 18:16:07 2024 -0500
Add `--configFile`, `--format` and `--verbosity` options to `dotnet package search` (#12970)
commit c985475e48b92ba4e618f89ed2340431fb8d880d
Author: Artak M. <artakm@microsoft.com>
Date: Wed Dec 27 10:14:29 2023 -0800
Use nuget push and nuget delete commands for basic operations on stages and staged packages
commit b4bbc0c9587f2a2dfa4456db26290c17a789842a
Author: Artak <34246760+mkArtakMSFT@users.noreply.github.com>
Date: Wed Dec 20 18:25:10 2023 -0800
Update proposed/2023/release-staging-and-deprecation.md
commit 808c60817870ed09655ca4d9f303775f78d83b53
Author: albarry4 <albarry@microsoft.com>
Date: Tue Dec 12 15:34:44 2023 -0800
added hover icons for update and remove and proposal for context setting functionality
commit fcdd5c315292bfad23431ae2f9b9e64e67ada6ef
Author: albarry4 <albarry@microsoft.com>
Date: Tue Dec 12 11:40:59 2023 -0800
added search syntax link and status icon info to future possibilities
commit fb1bc5e27871ad5b586a4281985cf8a5cf398acc
Author: albarry4 <albarry@microsoft.com>
Date: Mon Dec 11 17:37:04 2023 -0800
fixing a link in table of contents
commit c8f207c097ec82acb646b28f2838925b4d9c3d40
Author: albarry4 <albarry@microsoft.com>
Date: Mon Dec 11 17:32:24 2023 -0800
draft finished
commit aaeaeaec745d6f2d4813e954d6ee7ec37c3565c8
Author: albarry4 <albarry@microsoft.com>
Date: Mon Dec 11 16:03:13 2023 -0800
remove package and update package draft flows - done
commit dad73c9234bbd2b0a21599ec91818e118956d9b5
Author: albarry4 <albarry@microsoft.com>
Date: Mon Dec 11 14:40:15 2023 -0800
some formatting fixes
commit 365b76ed0a5f20fe96042ab4ba72b9ed4885a2af
Author: albarry4 <albarry@microsoft.com>
Date: Mon Dec 11 13:36:16 2023 -0800
adding details about how to search by author & tag
commit 8c594ef78adf7be60a9ea70976355ff36eda80f7
Author: albarry4 <albarry@microsoft.com>
Date: Mon Dec 11 13:29:50 2023 -0800
add package experience proposal - done
commit 95e7c4202e8c62b605f9b2022d25cdeca75cb607
Author: albarry4 <albarry@microsoft.com>
Date: Thu Dec 7 16:31:24 2023 -0800
add package experience and screenshots mostly done - need to proofread
commit 6cc6658e516bd8f9dd2931106d3cc503b244c6b4
Author: albarry4 <albarry@microsoft.com>
Date: Thu Dec 7 11:50:54 2023 -0800
option 1 add experience mostly finished
commit 44978215e33c0db467951129ab4ed0c826e46ae9
Author: albarry4 <albarry@microsoft.com>
Date: Wed Dec 6 11:54:50 2023 -0800
draft content for add, remove, and update commands
commit f833e59e430dbc2508e80c7c3628a473c36921b2
Author: Jon Douglas <jonathan.douglas@microsoft.com>
Date: Tue Dec 5 15:30:25 2023 -0600
Initial drop
commit 6325981966e01cd6c9572c971ce34c74a5733bef
Author: Artak <34246760+mkArtakMSFT@users.noreply.github.com>
Date: Sun Dec 3 22:46:57 2023 -0800
Update proposed/2023/release-staging-and-deprecation.md
Co-authored-by: Joel Verhagen <jver@microsoft.com>
commit 9ab863b6f92449960745606ffbf598325942c093
Author: Artak <34246760+mkArtakMSFT@users.noreply.github.com>
Date: Sun Dec 3 22:46:42 2023 -0800
Update proposed/2023/release-staging-and-deprecation.md
commit 4bf53bea3ce7e6984fe72a48902fc2d79fafe962
Author: Artak <34246760+mkArtakMSFT@users.noreply.github.com>
Date: Sun Dec 3 22:45:06 2023 -0800
Update proposed/2023/release-staging-and-deprecation.md
Co-authored-by: Joel Verhagen <jver@microsoft.com>
commit 7c6dae86fb50626ef25999ba0f12e2246fcc6809
Author: Artak <34246760+mkArtakMSFT@users.noreply.github.com>
Date: Sun Dec 3 22:39:43 2023 -0800
Update proposed/2023/release-staging-and-deprecation.md
Co-authored-by: Joel Verhagen <jver@microsoft.com>
commit 8b0e45deff0dea22fc48536c8d376e9df8689a2d
Author: Artak <34246760+mkArtakMSFT@users.noreply.github.com>
Date: Sun Dec 3 22:39:15 2023 -0800
Update proposed/2023/release-staging-and-deprecation.md
Co-authored-by: Joel Verhagen <jver@microsoft.com>
commit ba219d476b4f410cb5f69d09105a75e2e92836d5
Author: Artak <34246760+mkArtakMSFT@users.noreply.github.com>
Date: Sun Dec 3 22:37:26 2023 -0800
Update proposed/2023/release-staging-and-deprecation.md
Co-authored-by: Joel Verhagen <jver@microsoft.com>
commit 9db0b77b517b4179f3a296f800755b86d23399a8
Author: Artak <34246760+mkArtakMSFT@users.noreply.github.com>
Date: Tue Nov 28 17:46:01 2023 -0800
Update proposed/2023/release-staging-and-deprecation.md
Co-authored-by: Joel Verhagen <jver@microsoft.com>
commit 1b17ac5b9bcfc88c073ca297df8525cd4ea00f44
Author: Artak <34246760+mkArtakMSFT@users.noreply.github.com>
Date: Tue Nov 28 17:45:26 2023 -0800
Update proposed/2023/release-staging-and-deprecation.md
Co-authored-by: Joel Verhagen <jver@microsoft.com>
commit 7943122dffa435f4daeee600efcc5b744cd2e97e
Merge: 049d813 385ed6e
Author: Donnie Goodson <49205731+donnie-msft@users.noreply.github.com>
Date: Tue Nov 21 11:34:07 2023 -0800
Move existing Proposals to Accepted folder
commit 385ed6ed0ff13ec6fe7465a1abae922e774e3fe5
Author: Donnie Goodson <49205731+donnie-msft@users.noreply.github.com>
Date: Mon Nov 20 09:58:04 2023 -0800
Move existing Proposals to Accepted folder
commit b18b5cc1507df04ea9785f8ba613b1ceb2ad93ea
Author: Donnie Goodson <49205731+donnie-msft@users.noreply.github.com>
Date: Mon Nov 20 09:57:43 2023 -0800
Update Readme verbiage
commit 049d8134fc43ae0e5392e7e4b1b15b0972a585d7
Merge: d43a2a3 97233db
Author: Donnie Goodson <49205731+donnie-msft@users.noreply.github.com>
Date: Mon Nov 20 11:03:29 2023 -0800
Package Source Mapping proposals are implemented
commit 97233dbee68859ab10d354f61056ce3d26693346
Author: Donnie Goodson <49205731+donnie-msft@users.noreply.github.com>
Date: Mon Nov 20 09:35:06 2023 -0800
Package Source Mapping proposals are implemented
commit e4f5603eb31f66c02503844d2b481bf6428069a7
Author: Artak <34246760+mkArtakMSFT@users.noreply.github.com>
Date: Fri Nov 10 15:23:26 2023 -0800
Update proposed/2023/release-staging-and-deprecation.md
commit d43a2a33ac60e59eda5d13f46ece2e2cc44d1247
Author: Nigusu <59111203+Nigusu-Allehu@users.noreply.github.com>
Date: Mon Oct 23 09:00:26 2023 -0700
Spec for `dotnet package search` : implements a `search` functionality. (#12886)
commit a5adc5e00d2e54d2f8392256512fff6a8b875f4c
Author: Artak Mkrtchyan <artakm@microsoft.com>
Date: Wed Oct 18 18:00:17 2023 -0700
Clarifying some details about the proposal
commit 0aac050eb461df50e7443bab9f5d25131c3cd1bd
Author: Artak Mkrtchyan <artakm@microsoft.com>
Date: Wed Oct 18 15:41:40 2023 -0700
Update the nuget grouping proposal
commit 2cddd5e79da1bcdeaba7827c6b25b602aea57ccf
Merge: a2b0ff8 9c53aab
Author: Donnie Goodson <49205731+donnie-msft@users.noreply.github.com>
Date: Fri Oct 13 16:22:01 2023 -0700
Spec for Package Source Mapping Package Management Actions in the PM UI
commit a2b0ff89970685fd0e7e05ef3da16e401fb5ec5c
Author: Nigusu <59111203+Nigusu-Allehu@users.noreply.github.com>
Date: Tue Sep 26 10:24:06 2023 -0700
Spec for NoHttpCache option (#12846)
Spec for NoHttpCache option (#12846)
Co-authored-by: Jeff Kluge <jeffkl@microsoft.com>
---------
Co-authored-by: Jeff Kluge <jeffkl@microsoft.com>
commit 036626c512d4c25345441c4392160bc534c67cbe
Merge: e0d5348 45e88ed
Author: Heng Liu <45407901+heng-liu@users.noreply.github.com>
Date: Mon Sep 25 15:33:51 2023 -0700
Merge pull request #12890 from NuGet/dev-hengliu-supportCommunityPR
commit d93ff73be9d9125110e31676337bebe32c914379
Author: Artak <34246760+mkArtakMSFT@users.noreply.github.com>
Date: Thu Sep 21 12:04:18 2023 -0700
Update proposed/2023/release-staging-and-deprecation.md
Co-authored-by: Joel Verhagen <jver@microsoft.com>
commit 45e88edda506dbd8e6a8bceff8ddae68397f5dc1
Author: Heng Liu <henli@microsoft.com>
Date: Wed Sep 20 15:00:55 2023 -0700
label/stale/close community PR
commit 5c37ec4b4f7164a390284b63a52acd5b8db304fa
Author: Artak M. <artakm@microsoft.com>
Date: Wed Sep 13 11:40:42 2023 -0700
React to review feedback
commit 1b5d6ae596f5be09d568025486495bf710a35892
Author: Artak <34246760+mkArtakMSFT@users.noreply.github.com>
Date: Wed Sep 13 11:29:13 2023 -0700
Update proposed/2023/release-staging-and-deprecation.md
Co-authored-by: Andy Zivkovic <zivkan@users.noreply.github.com>
commit e0d53487840056e2eee21e2e22ccbb828c0165d1
Merge: 8177c8e bf01282
Author: Alexandra Barry <89422562+albarry4@users.noreply.github.com>
Date: Tue Sep 12 13:27:00 2023 -0400
Merge pull request #12709 from NuGet/albarry4-patch-1-1
Rendering Markdown readmes in the PMUI package details page
commit bf0128295e67356c1d6f61ef1a499ede6752194c
Author: Alexandra Barry <89422562+albarry4@users.noreply.github.com>
Date: Tue Sep 12 10:22:30 2023 -0700
Update PMUI-Readme-rendering.md
commit fe26876d67b9a924dbebc620672b5bff8986aab3
Author: Alexandra Barry <89422562+albarry4@users.noreply.github.com>
Date: Tue Sep 12 10:20:43 2023 -0700
Update PMUI-Readme-rendering.md
adding to unanswered questions section
commit cd801cf903b91baad5e318c560951ddef622f8a0
Author: Artak <34246760+mkArtakMSFT@users.noreply.github.com>
Date: Mon Sep 11 08:54:41 2023 -0700
Update proposed/2023/release-staging-and-deprecation.md
Co-authored-by: Andy Zivkovic <zivkan@users.noreply.github.com>
commit 529fb1ae3bb4fa4bf4f84fe2dd977ea1ba51dba5
Author: Artak <34246760+mkArtakMSFT@users.noreply.github.com>
Date: Mon Sep 11 08:53:45 2023 -0700
Update proposed/2023/release-staging-and-deprecation.md
Co-authored-by: Andy Zivkovic <zivkan@users.noreply.github.com>
commit 104f134080dd8f59d70b9eab92818267d651dcb0
Author: Artak <34246760+mkArtakMSFT@users.noreply.github.com>
Date: Sun Sep 10 09:23:43 2023 -0700
Update proposed/2023/release-staging-and-deprecation.md
Co-authored-by: Nikolche Kolev <nikolce1kolev@gmail.com>
commit d1ac1c9b773bfa8047047bfc3ad74cb10a9715a4
Author: Artak M. <artakm@microsoft.com>
Date: Thu Sep 7 20:58:34 2023 -0700
Proposal for package-grouping per release
commit 8177c8eb67a96eac0670722559295c74949593e0
Author: Nikolche Kolev <nikolce1kolev@gmail.com>
Date: Tue Aug 29 09:44:49 2023 -0700
Update the spec template (#12853)
commit 9c53aabaa885ec5e7f5309581ab4cb086b7f9426
Author: Donnie Goodson <49205731+donnie-msft@users.noreply.github.com>
Date: Thu Aug 24 14:39:09 2023 -0700
Add GPF tables and blurb
commit 6daa5e85aab60ba064c57f87d8ed26fe6895811f
Author: Arnaud TAMAILLON <arnaud.dev@gmail.com>
Date: Tue Aug 22 19:16:17 2023 +0200
Remove projects from list package command (#12735)
commit c51c16d14443b91bd62c4ba4398297287ceaa976
Author: Donnie Goodson <49205731+donnie-msft@users.noreply.github.com>
Date: Fri Aug 18 17:30:58 2023 -0700
Matrix of package source configration scenarios.
commit e981ecd615d53c995132bb168c90fb9f93faabc6
Author: Donnie Goodson <49205731+donnie-msft@users.noreply.github.com>
Date: Tue Aug 15 13:49:41 2023 -0700
Order Future Possibilities by priority
commit fbbfacb33e80001d8d7a9d8f9ef534b993cb8fe1
Author: Donnie Goodson <49205731+donnie-msft@users.noreply.github.com>
Date: Fri Aug 11 17:05:39 2023 -0700
Spec for Package Source Mapping Package Management Actions in the PM UI
commit ce01a00b24f6c277318a4083fe045570c57696b4
Author: Alexandra Barry <89422562+albarry4@users.noreply.github.com>
Date: Tue Jul 18 10:44:48 2023 -0700
Adding more details to drawbackss and alternatives sections
commit 6df589597c97c82a5308fef33cce40027b441256
Author: Alexandra Barry <89422562+albarry4@users.noreply.github.com>
Date: Tue Jul 18 10:37:25 2023 -0700
Changing the functional explanation to simplify the change in experience
commit 4f5ec40814edde14584d5720854a293fa9f9855e
Author: Alexandra Barry <89422562+albarry4@users.noreply.github.com>
Date: Tue Jul 18 09:49:11 2023 -0700
Update PMUI-Readme-rendering.md
commit ff7671cc64c47666f6c93a637c1ab6f358b3fc34
Author: Alexandra Barry <89422562+albarry4@users.noreply.github.com>
Date: Tue Jul 18 09:48:31 2023 -0700
Update PMUI-Readme-rendering.md
commit b628a80bdd3c9fb9586b24f7d964a141b44ac9a2
Author: Alexandra Barry <89422562+albarry4@users.noreply.github.com>
Date: Tue Jul 18 09:46:44 2023 -0700
Update proposed/2023/PMUI-Readme-rendering.md
Co-authored-by: Jean-Pierre Briedé <jebriede@microsoft.com>
commit 4b51946ad46283ea9b6b3b557677779965dae3b1
Author: Alexandra Barry <89422562+albarry4@users.noreply.github.com>
Date: Tue Jul 18 09:46:09 2023 -0700
Update proposed/2023/PMUI-Readme-rendering.md
Co-authored-by: Jean-Pierre Briedé <jebriede@microsoft.com>
commit 6eae407461a0a93536d3080e4dc15a3f6616e211
Merge: a6fea29 09ca30f
Author: Jon Douglas <jodou@microsoft.com>
Date: Mon Jul 17 14:33:03 2023 -0500
Merge pull request #12542 from NuGet/insecureconnections
allowInsecureConnections and disableCertificateValidation Proposal
commit 09ca30f658d7dd4cfacc0ee1a5a3280a912103bf
Author: Jon Douglas <jodou@microsoft.com>
Date: Mon Jul 17 14:32:27 2023 -0500
Update name of DisableTLSCertificateValidation
commit a6fea29b47359df9a1a03c381459e2b72c6062e9
Merge: 753cae6 4e981b1
Author: Jon Douglas <jodou@microsoft.com>
Date: Fri Jul 7 11:24:27 2023 -0500
Merge pull request #12611 from NuGet/JonDouglas-patch-1
Update vulnerabilities-in-restore.md
commit 753cae607eac609032bed2af6a16b072300494d6
Author: Nikolche Kolev <nikolev@microsoft.com>
Date: Thu Jul 6 17:15:35 2023 -0700
Move nuget.config on linux design to implemented
commit df60a810144be76910d19daa2670096c6388b178
Author: Alexandra Barry <89422562+albarry4@users.noreply.github.com>
Date: Wed Jul 5 16:11:56 2023 -0700
Update PMUI-Readme-rendering.md
commit f1f8f463abe2f506ea7a1d790815bf1679e47135
Author: Alexandra Barry <89422562+albarry4@users.noreply.github.com>
Date: Wed Jul 5 14:57:38 2023 -0700
Update PMUI-Readme-rendering.md
commit ac74ed18f1e82a5cdc9d9604fa2341ca702e14f2
Author: Jon Douglas <jodou@microsoft.com>
Date: Wed Jul 5 14:43:23 2023 -0500
Update InsecureConnectionsDisableCertificateValidation.md
commit 8bdf2aa2190d7336ae19514e756a0c957266d05b
Merge: 796e106 7c9cc73
Author: Donnie Goodson <49205731+donnie-msft@users.noreply.github.com>
Date: Fri Jun 30 11:57:34 2023 -0700
NuGet Proposal Process simplification
commit 4e981b18144f3479f0b00cae6768dbd6a815b57a
Author: Jon Douglas <jodou@microsoft.com>
Date: Tue Jun 27 13:40:56 2023 -0500
Update vulnerabilities-in-restore.md
Add future possibilities of readiness
commit 0d99864fcc6583e03ca46693289171cda7781d5e
Author: Alexandra Barry <89422562+albarry4@users.noreply.github.com>
Date: Tue Jun 27 10:49:45 2023 -0700
Create PMUI-Readme-rendering.md
commit 7c9cc73bcd10ee29c8cb6d2d76b0633d441cdf5e
Author: donnie-msft <49205731+donnie-msft@users.noreply.github.com>
Date: Tue Jun 27 10:04:35 2023 -0700
in the PR and Issue
commit dacf6e6feadc96f76614cf387af80aef67959980
Author: donnie-msft <49205731+donnie-msft@users.noreply.github.com>
Date: Mon Jun 26 14:37:52 2023 -0700
Remove status in doc header
commit 2262fff87ecd7745f5b2c2a0393b863c9b2884ba
Author: donnie-msft <49205731+donnie-msft@users.noreply.github.com>
Date: Mon Jun 26 12:41:37 2023 -0700
move 1 Implemented to the bottom of header
commit 04221a1001cfb14ac112c56a9319506f28bf9ded
Author: donnie-msft <49205731+donnie-msft@users.noreply.github.com>
Date: Mon Jun 26 12:26:09 2023 -0700
Template starts off with Status: Proposed
commit 50f7e2f3164c62375ff99926c82cf7f1017ac517
Author: donnie-msft <49205731+donnie-msft@users.noreply.github.com>
Date: Mon Jun 26 12:20:47 2023 -0700
Move Withdrawn and Implemented to Proposed and Accepted with a status in the header
commit 7a601df8cbdbdb4cc5623630ef00e63286be388c
Author: Donnie Goodson <49205731+donnie-msft@users.noreply.github.com>
Date: Mon Jun 26 12:07:43 2023 -0700
NuGet Proposal Process simplification
commit 796e1066263f68eed05f966bfb63d1e3887cd017
Merge: e174693 50af4a0
Author: Donnie Goodson <49205731+donnie-msft@users.noreply.github.com>
Date: Tue Jun 20 16:04:08 2023 -0700
Spec: Markdown Readme shown after Package Installation in PM UI
commit 50af4a09aedee2a87a645c02bbeba0fef2f55fe1
Author: donnie-msft <49205731+donnie-msft@users.noreply.github.com>
Date: Tue Jun 20 12:30:53 2023 -0700
Markdown Readme shown after Package Installation in PM UI
commit e174693f328f1395487bc5b5b6cdfc113a871849
Merge: 63023da c891920
Author: Donnie Goodson <49205731+donnie-msft@users.noreply.github.com>
Date: Tue Jun 13 10:09:57 2023 -0700
Spec for Package Source Mapping Status in PM UI
commit c8919201faca0d9c53caed6467c7e0b3deb41d02
Author: donnie-msft <49205731+donnie-msft@users.noreply.github.com>
Date: Thu Jun 1 16:50:54 2023 -0700
Off mode shows Info icon
commit ec816537e769866ad0a110cefccf8dbac97ebde9
Author: donnie-msft <49205731+donnie-msft@users.noreply.github.com>
Date: Fri May 26 11:12:38 2023 -0700
Remove draft Actions PR
commit f354800132d6cf83622cc98034302e64c8b03bb8
Author: donnie-msft <49205731+donnie-msft@users.noreply.github.com>
Date: Fri May 26 07:40:08 2023 -0700
Add status icons
commit d232c68008f772ec3bdd176ba8ba44fac684c2e9
Author: Jon Douglas <jodou@microsoft.com>
Date: Thu May 25 12:02:33 2023 -0500
Update vulnerabilities-in-restore.md
commit bd26e4f601facc6b279db50481483d862fa857b5
Author: donnie-msft <49205731+donnie-msft@users.noreply.github.com>
Date: Tue May 23 10:46:56 2023 -0700
Fix order in table
commit 2a1cbe94f84530434272f45655497916e4b2c8fc
Author: Jon Douglas <jodou@microsoft.com>
Date: Mon May 22 14:34:06 2023 -0500
Update vulnerabilities-in-restore.md
commit 181fb51fc259bdd2614fea68944f712ab3307060
Author: donnie-msft <49205731+donnie-msft@users.noreply.github.com>
Date: Sat May 20 11:57:45 2023 -0700
fix status image link
commit e2378fdf56c4767f69fe7865541573fd09fd8b98
Author: donnie-msft <49205731+donnie-msft@users.noreply.github.com>
Date: Sat May 20 11:53:17 2023 -0700
Move specs to 2023 folder
commit f27894576595d318facf1fdef58bce197308fd2a
Author: donnie-msft <49205731+donnie-msft@users.noreply.github.com>
Date: Sat May 20 11:51:44 2023 -0700
Create SourceMapping Status in PM UI spec and update SourceMapping Actions spec
commit 15c7cef0609c535039f3313371e90972904955ca
Author: donnie-msft <49205731+donnie-msft@users.noreply.github.com>
Date: Tue May 2 22:55:53 2023 -0700
Revisions2
commit 9f585d75ee08d8aeb7b4c2dde7e86565f91cba28
Author: donnie-msft <49205731+donnie-msft@users.noreply.github.com>
Date: Tue May 2 22:52:41 2023 -0700
Revisions including removing RadioButton
commit 410840f1423915a893017cc1ee2a4962fe13938d
Author: donnie-msft <49205731+donnie-msft@users.noreply.github.com>
Date: Fri Apr 28 13:27:17 2023 -0700
rewordings
commit 63023da91ad2ec8bdbb848623418ea952f28d8e4
Author: Andy Zivkovic <zivkan@users.noreply.github.com>
Date: Wed May 10 13:08:24 2023 +0200
`dotnet nuget apikey` command spec (#12321)
commit 5f1578480a215622272446f39dc16a23e026ef82
Author: Jon Douglas <jodou@microsoft.com>
Date: Wed Apr 26 10:49:22 2023 -0500
Update InsecureConnectionsDisableCertificateValidation.md
commit 14e8454ce0bf6b1a85ecdd855a3bca8b0318ea71
Author: Jon Douglas <jodou@microsoft.com>
Date: Wed Apr 26 10:42:55 2023 -0500
Update InsecureConnectionsDisableCertificateValidation.md
commit d39de8e14a7a7c5975e80fb7ff687d3e71fe2379
Author: Jon Douglas <jonathan.douglas@microsoft.com>
Date: Fri Apr 14 11:27:07 2023 -0500
Initial proposal
commit 8e9280015cac8364ad175da8846209e6ec1467bc
Author: Andy Zivkovic <zivkan@users.noreply.github.com>
Date: Fri Apr 7 10:40:16 2023 +0200
Update "vulnerabilities in restore" spec (#12529)
commit 72a2e173e1c7d82880f21b8574a81874eeb15ead
Merge: 3af0ca4 eac4007
Author: Jon Douglas <jodou@microsoft.com>
Date: Thu Mar 16 09:35:06 2023 -0500
Merge pull request #12310 from NuGet/dev-feature-vinr
Auditing projects for package vulnerabilities during restore
commit eac400750cbd64461a00890f15678b125d8ad559
Author: Andy Zivkovic <zivkan@users.noreply.github.com>
Date: Thu Mar 2 11:37:12 2023 +0100
fix service index resource client version
commit 3af0ca42a35f6b0c0494f8c42625b5fe616b21bc
Merge: d62ea57 d033f1e
Author: Heng Liu <45407901+heng-liu@users.noreply.github.com>
Date: Tue Feb 14 09:11:49 2023 -0800
Merge pull request #12433 from NuGet/dev-hengliu-addadoNotAutoClose
Add a "do not auto close" label
commit d033f1e310fb2590851bf98ccd5388564705b8f6
Author: Heng <liu.heng@microsoft.com>
Date: Mon Feb 13 14:56:46 2023 -0800
do not close PRs need long review process
commit 3c348aaca74d2bc792022622dd557fd825f74c9c
Author: Andy Zivkovic <Andy.Zivkovic@microsoft.com>
Date: Mon Feb 13 13:13:19 2023 +0100
Hopefully these changes are improvements.
commit 87039519d899404a335d1a4df4fe032e3ab10efc
Author: Andy Zivkovic <Andy.Zivkovic@microsoft.com>
Date: Fri Feb 10 13:00:13 2023 +0100
try to make protocol proposal a little more clear
commit 89adab43f90bb67256a228ac3b4b98e4c881f36d
Author: Andy Zivkovic <Andy.Zivkovic@microsoft.com>
Date: Fri Feb 10 12:42:04 2023 +0100
minor update
commit e853c2a9b19206b163930c73f376be4db6cb8d98
Author: Andy Zivkovic <Andy.Zivkovic@microsoft.com>
Date: Fri Feb 10 12:33:40 2023 +0100
Move command line output to future possibilities
commit 374004e4de6b977f0d4befcdb99626a92284c5a3
Author: Andy Zivkovic <Andy.Zivkovic@microsoft.com>
Date: Fri Feb 10 12:12:43 2023 +0100
Be more explicit about data source
nuget.org uses GitHub's advisories database, but other servers can use
other data sources if they want
commit be9614451a7977ee77cadcc68dfac87ff1cdaaf4
Author: Andy Zivkovic <Andy.Zivkovic@microsoft.com>
Date: Fri Feb 10 11:55:10 2023 +0100
Update proposed file format
commit d62ea57b399a2487f3b6211c03c75b8d76b7df46
Merge: daa2597 195de1f
Author: Heng Liu <45407901+heng-liu@users.noreply.github.com>
Date: Tue Feb 7 10:45:08 2023 -0800
Merge pull request #12408 from NuGet/dev-hengliu-fabricbot-addAdmin
FabricBot: fix a condition when switching "waiting for" label
commit 195de1f3da8a9fa5db17bfbd4cb12dcf46fa2f8b
Author: Heng <liu.heng@microsoft.com>
Date: Thu Feb 2 10:45:37 2023 -0800
add admin
commit 9ee1d020616e893bbb6334d18840405ddd7f747f
Author: Jon Douglas <jodou@microsoft.com>
Date: Wed Jan 25 16:52:26 2023 -0600
Update vulnerabilities-in-restore.md
commit daa25975fc2fcdd2400909d7ed04cbb2b9ad6315
Merge: 03bc069 45f081f
Author: Heng Liu <45407901+heng-liu@users.noreply.github.com>
Date: Wed Jan 4 10:08:49 2023 -0800
Merge pull request #12172 from NuGet/dev-hengliu-addSpec-dotnetNuGetConfig
commit 45f081f6198b6134066656a1ed230359e0e1dfcf
Author: Heng <liu.heng@microsoft.com>
Date: Mon Dec 12 12:10:52 2022 -0800
address feedback
commit 779cfc85bdff9887f47ae36d5705151667a80dcb
Author: Heng <liu.heng@microsoft.com>
Date: Mon Dec 12 10:18:48 2022 -0800
fix a typo
commit 160cda000b0cd6ab255ffcc6b12199f7403d2247
Author: Heng <liu.heng@microsoft.com>
Date: Mon Dec 12 10:11:44 2022 -0800
address feedbacks
commit ac08ee469daa785c83130aac8d30dee58a0862a8
Author: Jon Douglas <jodou@microsoft.com>
Date: Wed Dec 7 18:03:22 2022 -0600
Update proposed/2022/vulnerabilities-in-restore.md
Co-authored-by: Loïc Sharma <737941+loic-sharma@users.noreply.github.com>
commit 43945151ded621f13705cd53814cd139b77ac710
Author: Jon Douglas <jodou@microsoft.com>
Date: Wed Dec 7 13:28:43 2022 -0600
Update vulnerabilities-in-restore.md
commit e9e1e91bfee06a4d9d0e0b4dd1272eec89fbaae6
Author: Nikolche Kolev <nikolev@microsoft.com>
Date: Tue Dec 6 13:51:59 2022 -0800
Change should to may
commit f2955e5110167a112bbf6914209f80ab7e0d3524
Author: Nikolche Kolev <nikolev@microsoft.com>
Date: Tue Dec 6 11:45:25 2022 -0800
remove start date
commit e4b6ae53792f01a50dcdd05ae781bfa36eb1c6b1
Author: Heng <liu.heng@microsoft.com>
Date: Tue Dec 6 11:29:38 2022 -0800
change WORKING_DIRECTORY from option to argument
commit db1ed85dad375706fee389e690c7e6b20156930c
Author: Jon Douglas <jodou@microsoft.com>
Date: Tue Dec 6 12:46:59 2022 -0600
Update metadata
commit edcdebdc30d8f0861351605c68237dbc8bb269e1
Author: Jon Douglas <jodou@microsoft.com>
Date: Tue Dec 6 12:46:17 2022 -0600
Clean up and add prior art / futures
commit 998a8f39c41eca45a580592d110bb806d7c66126
Author: Nikolche Kolev <nikolev@microsoft.com>
Date: Tue Dec 6 00:25:55 2022 -0800
Add the initial version
commit 03bc06968f6f2e8542bc16a0a904423a23a800f6
Merge: c8667db 004557b
Author: Donnie Goodson <49205731+donnie-msft@users.noreply.github.com>
Date: Mon Dec 5 14:27:39 2022 -0800
Spec for PMUI package source mapping
commit 0836860d7c64e30e388bbc1f559e61c440e63cc2
Author: Heng <liu.heng@microsoft.com>
Date: Tue Nov 22 13:56:23 2022 -0800
address feedback
commit 46aec6c0887faa1d43581e75765020349feff7be
Author: Heng <liu.heng@microsoft.com>
Date: Tue Nov 22 13:54:55 2022 -0800
address feedback
commit 3b4ef114c120423e9636e7f08c9e090c033ed08b
Author: Heng <liu.heng@microsoft.com>
Date: Tue Nov 22 13:40:06 2022 -0800
Reformat the output of dotnet nuget config all
commit b67907434c72723b2cd58d4b55f3ab2bd3f948a9
Author: Heng <liu.heng@microsoft.com>
Date: Tue Nov 22 12:56:49 2022 -0800
address feedback
commit b74b82974e9471a81913ae7c271f9ac79013070b
Author: Heng <liu.heng@microsoft.com>
Date: Mon Nov 21 09:33:19 2022 -0800
fix option working-dir
commit 4150a2bdaf49ee004f8a521f95ad4af7f08b28f5
Author: Heng <liu.heng@microsoft.com>
Date: Mon Nov 21 09:28:06 2022 -0800
fix
commit b56944dcc7aa47fe702b3cf8f89e4e9a9205a0dc
Author: Heng <liu.heng@microsoft.com>
Date: Fri Nov 18 17:28:33 2022 -0800
fix format
commit efb1a2e5d17230304fe06ed337b880fe8c7c1ff7
Author: Heng <liu.heng@microsoft.com>
Date: Fri Nov 18 17:14:20 2022 -0800
fix
commit 209f3f07d75d110e599eadd502306973dc5e1b6a
Author: Heng <liu.heng@microsoft.com>
Date: Fri Nov 18 16:56:55 2022 -0800
edit the open questions
commit dfae3bdb7ee42bc0134fd78fe24d2304f14266da
Author: Heng <liu.heng@microsoft.com>
Date: Fri Nov 18 11:56:28 2022 -0800
address comments
commit c8667db52471a50088c2ea983f98c58934924d55
Merge: 71715cf dfb81ad
Author: Heng Liu <45407901+heng-liu@users.noreply.github.com>
Date: Thu Nov 17 12:57:23 2022 -0800
Merge pull request #12248 from NuGet/dev-hengliu-fb-closeStaleIcebox-removeInternalDebuggingLabel
Update a bot to Close stale icebox issues, remove internal-debugging label
commit dfb81ad040185be15554fd23b6196fe6620a305e
Author: Heng <liu.heng@microsoft.com>
Date: Wed Nov 16 13:58:47 2022 -0800
remove internal-debugging label
commit a64746c1039b1d220c453490376d6a862b62ad58
Author: Heng <liu.heng@microsoft.com>
Date: Wed Nov 16 13:54:57 2022 -0800
work
commit 71715cfa2504af1ff73cefa9eefbf763f9f9bd35
Merge: fb9e558 1a7c7cf
Author: Heng Liu <45407901+heng-liu@users.noreply.github.com>
Date: Wed Nov 16 09:22:04 2022 -0800
Merge pull request #12225 from NuGet/dev-hengliu-FabricBot-closeStaleIcebox
Add a bot to Close stale icebox issues, with internal-debugging label
commit 91e47c07b6d587a10992d1ed3d87259fd0707b6c
Author: Heng <liu.heng@microsoft.com>
Date: Tue Nov 15 12:24:38 2022 -0800
fix format
commit 54133da3437371a3a15b31c3eecd5a5bc962a8ee
Author: Heng <liu.heng@microsoft.com>
Date: Tue Nov 15 12:20:24 2022 -0800
add consideration
commit c261b0b7e9bed578e60dc45a323f2bb718aaa87a
Author: Heng <liu.heng@microsoft.com>
Date: Tue Nov 15 12:14:17 2022 -0800
fix and add a question
commit 1bcd070708e2bc2f39c17679d5091be4e41a3230
Author: Heng <liu.heng@microsoft.com>
Date: Tue Nov 15 11:08:52 2022 -0800
add set and unset
commit 3fe2fe33ca6aed6f422a3dc13240c6d532db10df
Author: Heng <liu.heng@microsoft.com>
Date: Tue Nov 15 10:10:23 2022 -0800
address feedback, list merged settings by default
commit 1a7c7cf8fbf602e99f672b77c023d1214bfd805c
Author: Heng Liu <liu.heng@microsoft.com>
Date: Mon Nov 14 13:04:30 2022 -0800
address feedback
commit a1f68cff6ca6ce499c0b5ecfbbb37293d8d4a327
Author: Heng Liu <liu.heng@microsoft.com>
Date: Mon Nov 14 12:28:48 2022 -0800
add verbosity detailed
commit 0d689048c834aaa0084e1aad4c9718218c75a3fd
Author: Heng Liu <liu.heng@microsoft.com>
Date: Wed Nov 9 16:02:32 2022 -0800
Close stale icebox, with internal-debugging label
commit fb9e5585f57065949e87078239948f8b68ab9f25
Merge: 81e7469 c082b50
Author: Heng Liu <45407901+heng-liu@users.noreply.github.com>
Date: Tue Nov 8 11:10:11 2022 -0800
Merge pull request #12220 from NuGet/dev-hengliu-bot-addExistingRulesets
Add all existing rulesets as a fabricbot.json file
commit c082b50789cea187ed18063fc6ef0dca1ec62f72
Author: Heng Liu <liu.heng@microsoft.com>
Date: Mon Nov 7 14:10:13 2022 -0800
Add all existing rulesets as a fabricbot.json file
commit 81e7469ead1502d69c55f7b633317bb744589f1b
Merge: b8ba871 04b3ebe
Author: Erick Yondon <eryondon@microsoft.com>
Date: Sat Nov 5 15:02:32 2022 -0700
Merge pull request #11983 from NuGet/dev-eryondon-machinereadableoutputjson-error
Add errors handling scenario for json output spec
commit 04b3ebec7868c09054f800af8996148e4e3b15c8
Author: Erick Yondon <eryondon@microsoft.com>
Date: Fri Nov 4 09:29:07 2022 -0700
Unsupported version error out on console output
commit 557f5dfdcdaf21f7a83dab6d30a35d05d33d489b
Author: Erick Yondon <eryondon@microsoft.com>
Date: Mon Oct 31 21:44:30 2022 -0700
Add level property into problems
commit 9da2a9f6d7ad041f685586b3bafcfed5b089afdf
Author: Heng Liu <liu.heng@microsoft.com>
Date: Fri Oct 28 12:59:27 2022 -0700
address comments & add more examples
commit b8ba87116cde0aa2603736ef1a64ffda97edf70d
Author: Nikolche Kolev <nikolce1kolev@gmail.com>
Date: Fri Oct 28 10:48:35 2022 -0700
Update the issue templates - remove title prefix (#12199)
commit a25ea5d607fb176e6db8ba5833fe99ab98391136
Author: Heng Liu <liu.heng@microsoft.com>
Date: Thu Oct 27 16:53:57 2022 -0700
address feedback
commit 5819955f0d7eaafad498e69781d08c3492225e7e
Author: Erick Yondon <eryondon@microsoft.com>
Date: Thu Oct 27 11:40:14 2022 -0700
Error out on unsupported version value
commit ffd5e7147450d95710f6b0dcf581460d37d5b554
Author: Heng Liu <liu.heng@microsoft.com>
Date: Wed Oct 26 11:58:29 2022 -0700
address comments
commit abc436dd1a919a8aadc7b923e8bbcbffdf8159fe
Author: Heng Liu <liu.heng@microsoft.com>
Date: Mon Oct 24 11:11:18 2022 -0700
address feedback
commit 5dff9f6795d306360f49f0d8e57d833f96561a8e
Author: Heng Liu <liu.heng@microsoft.com>
Date: Fri Oct 21 15:50:31 2022 -0700
address feedback
commit 204ba1a52f7a1897d616a4f7acd1bc9b1a683578
Author: Heng Liu <liu.heng@microsoft.com>
Date: Wed Oct 19 15:01:19 2022 -0700
fix
commit 335e6ae28bf180abd131d12056d45e79b4f97f11
Author: Heng Liu <liu.heng@microsoft.com>
Date: Wed Oct 19 14:59:01 2022 -0700
address feedback
commit 006cb0f3de85fdf03b135a8a523b286b940d7e1c
Author: Heng Liu <liu.heng@microsoft.com>
Date: Wed Oct 19 09:59:54 2022 -0700
fix
commit e8fdc34ac26ee74b8bb58acbd90874942509e2c6
Author: Heng Liu <liu.heng@microsoft.com>
Date: Tue Oct 18 21:35:40 2022 -0700
work
commit 86ef63a7d70c68c8813115f99d028fdeb6c8dde8
Author: Erick Yondon <eryondon@microsoft.com>
Date: Tue Oct 18 16:28:01 2022 -0700
Add error/warning summary table
commit f82e58cb979526c43f79caed8c286d2113437951
Author: Erick Yondon <eryondon@microsoft.com>
Date: Tue Oct 18 14:13:47 2022 -0700
Add http source warning
commit c47a52a4a14d76418b7728a3fb7ac8a0f03a89c6
Author: Erick Yondon <eryondon@microsoft.com>
Date: Wed Oct 12 19:40:59 2022 -0700
Add autoreferenced package example
commit c30f2862f26fe95421cc830f636c0e0473ce181d
Author: Erick Yondon <eryondon@microsoft.com>
Date: Thu Sep 29 11:59:38 2022 -0700
Add more explicit example on complex scenario: dotnet list package --vulnerable --include-transitive
commit 726c8f261772cee42c1bb5a4ed09dc25c805c350
Author: Nikolche Kolev <nikolce1kolev@gmail.com>
Date: Mon Oct 10 16:20:16 2022 -0700
WarningsNotAsErrors proposal (#12134)
commit d541f4e0a2ab7c2666e4b6495b2f9c6e0b75bbe4
Author: Erick Yondon <eryondon@microsoft.com>
Date: Wed Sep 28 11:04:01 2022 -0700
Add case for Given '--include-prerelease', '--highest-minor', and '--highest-patch' options are only designed to use together with --outdated argument it would output warning
commit db97f90dd38ce24893f444941de368bb0aef8be4
Author: Erick Yondon <eryondon@microsoft.com>
Date: Tue Sep 27 14:10:06 2022 -0700
Add more cases for no vulnerable package found or found in 1 target framework.
commit 0d5603e395605bb2d20412bbab087808dd17ad09
Author: Nikolche Kolev <nikolev@microsoft.com>
Date: Mon Sep 26 15:52:59 2022 -0700
Design for erroring when NuGet.exe pack is used for an SDK based project (#12088)
commit c3bb5da3aa16016368b39f786aaf532e0b644507
Author: Andy Zivkovic <zivkan@users.noreply.github.com>
Date: Tue Sep 13 06:26:47 2022 +0930
Add IceBox Upvote Watcher workflow (#12089)
commit f5ea67c1b56a0942f04797c4f99d3294ebcbcb3d
Merge: c07585a 6066ff4
Author: Jon Douglas <jodou@microsoft.com>
Date: Fri Sep 2 15:19:48 2022 -0500
Merge pull request #11833 from NuGet/search-by-tfm-update
Update Search by TFM for 2022
commit c07585aeab2c72b4dc514f78bd4072be458189a0
Merge: e07a448 ad2c454
Author: Heng Liu <45407901+heng-liu@users.noreply.github.com>
Date: Wed Aug 31 15:15:08 2022 -0700
Merge pull request #12069 from NuGet/dev-hengliu-removeFabricbot.json
Remove fabricbot.json from repo, in order to use rulesets in portal
commit ad2c45475d48fbbac85ad26fad86715dac2f5869
Author: Heng Liu <liu.heng@microsoft.com>
Date: Wed Aug 31 11:31:08 2022 -0700
remove fabricbot.json to use rulesets in portal
commit e07a44822d07bedd0b19e32723d920af98dbae4e
Author: Jeff Kluge <jeffkl@microsoft.com>
Date: Wed Aug 10 16:55:03 2022 -0700
[Proposal]: Global Package Reference for Central Package Management (#11794)
commit 158a0bcf997e16389f8253b292f48bcff2fbca49
Author: Erick Yondon <eryondon@microsoft.com>
Date: Mon Aug 1 20:19:53 2022 -0700
Add parameter/option error examples
commit 52b0cb1e86e30f342b78b5241ff7afc6226a3ea4
Merge: 9d36b78 768e7d9
Author: pragnya17 <59893188+pragnya17@users.noreply.github.com>
Date: Fri Jul 29 14:12:20 2022 -0700
Merge pull request #11875 from NuGet/dev-kartheekp-ms-nugetwhy-proposal
dotnet nuget why proposal
commit 768e7d9b6dd6b1ef788b5918514483940af8dee6
Author: pragnya17 <59893188+pragnya17@users.noreply.github.com>
Date: Fri Jul 29 14:11:56 2022 -0700
Add some things to additional improvements
commit 861ebd714d6677d8b5837033b4951459a4b3370c
Author: Erick Yondon <eryondon@microsoft.com>
Date: Thu Jul 28 11:20:59 2022 -0700
Address PR comment
commit 918a269099422f4508fe6fb0f1fbe29dfdff3ad4
Author: Erick Yondon <eryondon@microsoft.com>
Date: Wed Jul 27 09:02:02 2022 -0700
Return non-zero result
commit 9d36b78a2363bf74f05e8d4d647ed0f1bb235133
Merge: c7ce1f8 f13382a
Author: Heng Liu <45407901+heng-liu@users.noreply.github.com>
Date: Tue Jul 26 13:37:49 2022 -0700
Merge pull request #11856 from NuGet/devHome-hengliu-addProposalConsolidatingConfig
Proposal of consolidating user wide NuGet.Config files on Linux/Mac
commit 6ff09e7956b9ff736fe4e7dc32a20200d24b0ef7
Author: Erick Yondon <eryondon@microsoft.com>
Date: Mon Jul 25 18:49:16 2022 -0700
Add errors handling cases for json output
commit f13382af578aecda25a67d3501c97da9e6f179dc
Author: Heng Liu <liu.heng@microsoft.com>
Date: Fri Jul 22 11:38:09 2022 -0700
address feedback
commit a1bf5d4d2e3ca56018d4136a49b720011a6c8be0
Author: pragnya17 <59893188+pragnya17@users.noreply.github.com>
Date: Tue Jul 19 16:34:35 2022 -0700
add limitation to PMUI view
commit 004557b7aa0b0b069e19036b4e75fa7f3546def7
Author: mcnallyella <t-emcnally@microsoft.com>
Date: Tue Jul 19 09:07:14 2022 -0700
delete options spec
commit df96ec899a21b4578bdb0913bbc5cf1965c288f5
Author: mcnallyella <t-emcnally@microsoft.com>
Date: Tue Jul 19 09:01:40 2022 -0700
Add to explanation
commit feaa2cc75105050bb757eb9dfc1473783c2281d3
Author: mcnallyella <t-emcnally@microsoft.com>
Date: Tue Jul 19 08:54:57 2022 -0700
change image name
commit c1e63f1402b5cfa9ff683e79fc52871ceec25de4
Author: mcnallyella <t-emcnally@microsoft.com>
Date: Tue Jul 19 08:53:51 2022 -0700
Replace details pane image
commit bd0313d363e4344b75260d934856e364f24362c7
Author: Heng Liu <liu.heng@microsoft.com>
Date: Mon Jul 18 18:25:36 2022 -0700
fix format
commit 59a34c0d54a3ecd6dd29d404a3bbac4efebc2d67
Author: mcnallyella <t-emcnally@microsoft.com>
Date: Mon Jul 18 16:47:36 2022 -0700
add images
commit 871c0bb0e3f3e129ecfc7eb9e50f5aa9d9ca0fa1
Author: mcnallyella <t-emcnally@microsoft.com>
Date: Mon Jul 18 16:45:13 2022 -0700
add images
commit 9bd597c5216900801bc6fe59ae1f096fc46c769b
Author: Heng Liu <liu.heng@microsoft.com>
Date: Mon Jul 18 16:32:05 2022 -0700
update after discussing with VS Mac team
commit aa433a206bb21f8e628a3fdcc861a2f19fc9422b
Author: mcnallyella <t-emcnally@microsoft.com>
Date: Fri Jul 15 11:13:26 2022 -0700
Changed checkbox to RadioButtons
commit c7ce1f8b1a481121668604a55ed20f2475d93e66
Author: Joel Verhagen <jver@microsoft.com>
Date: Thu Jul 14 18:39:18 2022 -0700
Update SECURITY.md (#11971)
Fix wording around how Microsoft's security policy applies to this .NET Foundation code repository.
Same idea as https://github.com/NuGet/NuGetGallery/pull/9164
commit eb7b7cf753e8e5c9c5de271ae3a3a78eb629b5d4
Author: Nikolche Kolev <nikolev@microsoft.com>
Date: Wed Jul 13 10:46:21 2022 -0700
Add stale waiting for customer bots (#11961)
commit e094057a34e3d24c50b8e48fa1bec1bde39fcdd7
Author: mcnallyella <t-emcnally@microsoft.com>
Date: Tue Jul 12 14:36:34 2022 -0700
Added table
commit 31560cbe40f8153614537c7a8d20d97262267c1e
Author: pragnya17 <59893188+pragnya17@users.noreply.github.com>
Date: Tue Jul 12 14:07:14 2022 -0700
add section to example assets file
commit f528520729c676d6eab4bc220119691e428a5835
Author: pragnya17 <59893188+pragnya17@users.noreply.github.com>
Date: Tue Jul 12 13:47:42 2022 -0700
Add sample project.assets.json file
commit ba61efc690b3acf03b004a540da527fd4286fe13
Author: pragnya17 <59893188+pragnya17@users.noreply.github.com>
Date: Tue Jul 12 12:18:59 2022 -0700
Clarify sentence, move section around
commit 31ffcb76c36f26bfdbe529f947e487638f68781e
Author: pragnya17 <59893188+pragnya17@users.noreply.github.com>
Date: Mon Jul 11 13:58:39 2022 -0700
update screenshot
commit b33ca2a99005ff69c632b720e90f5a193d0e48dc
Author: pragnya17 <59893188+pragnya17@users.noreply.github.com>
Date: Mon Jul 11 13:50:48 2022 -0700
change picture, add clarity to sentence
commit 297b0151dea07c241fdeabbdc0f8499acdee54e9
Author: pragnya17 <59893188+pragnya17@users.noreply.github.com>
Date: Mon Jul 11 12:13:07 2022 -0700
Rewording a few sentences/section headings
commit ccb9f0feaeaf5b1739259ff5077920d6c5fd3ed3
Author: pragnya17 <59893188+pragnya17@users.noreply.github.com>
Date: Mon Jul 11 11:58:21 2022 -0700
move to additional improvements section
commit 20e0b81ac4313a34a76e887421e617e791164514
Author: pragnya17 <59893188+pragnya17@users.noreply.github.com>
Date: Fri Jul 8 15:48:25 2022 -0700
update examples and wording in frameworks options sentence
commit cddb63f36dc04de37f183b6db89f45d30d8b1425
Author: pragnya17 <59893188+pragnya17@users.noreply.github.com>
Date: Fri Jul 8 10:16:52 2022 -0700
Fix typos, add more to additional improvements
commit 06c68f36c42d24f23677cfbbeca437dbdf58d8ab
Author: pragnya17 <59893188+pragnya17@users.noreply.github.com>
Date: Fri Jul 8 09:59:20 2022 -0700
diamond dependency
commit 847240bb373e1ead3573e38931b5eaf4fca20984
Author: pragnya17 <59893188+pragnya17@users.noreply.github.com>
Date: Fri Jul 8 09:43:25 2022 -0700
Remove unresolved questions section, packages.config is out of scope
commit 9e389a18357899b38f4ceaf4f573c45757bf56d5
Author: pragnya17 <59893188+pragnya17@users.noreply.github.com>
Date: Thu Jul 7 16:47:31 2022 -0700
Changes based on comments on the PR
commit 97513da2d49afde62e2eec292b42df63b7fb487a
Merge: 14bea09 1d62d44
Author: Kartheek Penagamuri <52756182+kartheekp-ms@users.noreply.github.com>
Date: Wed Jul 6 20:35:01 2022 -0700
Revised proposal for Adding dotnet CLI support for projects onboarded to CPM (Take 3)
commit 14bea0943c06deda7b9481ef738ac42a400f50f0
Merge: fe028f6 45314ae
Author: Fernando Aguilar <feaguila@microsoft.com>
Date: Tue Jul 5 12:22:23 2022 -0500
Merge pull request #11933 from NuGet/dev-dominofire-stalePRsFabricBot
Fixes https://github.com/NuGet/Client.Engineering/issues/1486
Adds bot rules for stale, non-community PRs
commit 45314aebecd8e65d4111403bf81dfc41fcdfe501
Author: Fernando Aguilar <feaguila@microsoft.com>
Date: Tue Jul 5 12:21:29 2022 -0500
Updated wording
commit 1d62d4466e924d3d69de2b22bd9113211dbd83c7
Author: pragnya17 <59893188+pragnya17@users.noreply.github.com>
Date: Fri Jul 1 14:56:31 2022 -0700
Update wording for dgspec.json file
commit 18f38513fba8c39bf38fa759293c8c461ac393c9
Author: Fernando Aguilar <feaguila@microsoft.com>
Date: Thu Jun 30 19:35:21 2022 -0500
Updated bot waiting time params
commit 80d96fceeb05344511ac48a19c183125cbe5b170
Author: Fernando Aguilar <feaguila@microsoft.com>
Date: Thu Jun 30 19:33:38 2022 -0500
Add bot rules for stale PRs
commit 7f53d61dccea7036eb0532787b10acdeee1e297c
Author: pragnya17 <59893188+pragnya17@users.noreply.github.com>
Date: Thu Jun 30 16:16:17 2022 -0700
Update file name, because casing matters
commit d106893b6e222096989af3e0a510405763c055f0
Author: Kartheek Penagamuri <52756182+kartheekp-ms@users.noreply.github.com>
Date: Thu Jun 30 11:50:05 2022 -0700
Update proposed/2022/cpm-dotnet-cli-add-package-support.md
Co-authored-by: Nikolche Kolev <nikolev@microsoft.com>
commit 76641a4b0b3f24056997d3ff93f859fe15aa1d32
Author: pragnya17 <59893188+pragnya17@users.noreply.github.com>
Date: Thu Jun 30 09:50:12 2022 -0700
Updates after design spec PR review meeting
commit fe028f6253020f4fbba03363369892ccff155323
Merge: 62e7d0a cf1b3ef
Author: Heng Liu <45407901+heng-liu@users.noreply.github.com>
Date: Tue Jun 28 19:45:47 2022 -0700
Merge pull request #11916 from NuGet/dev-hengliu-addFabricBot.json
Export FabricBot configuration to fabricbot.json file and add it to home repo
commit 49bde55be3558633f17a920dfa5c96ec4ee78653
Author: mcnallyella <t-emcnally@microsoft.com>
Date: Tue Jun 28 16:43:13 2022 -0700
Edited spec
commit 7f2e956954f1364bcbd737e930609f67d137185a
Merge: 098e20f 6f80ddb
Author: mcnallyella <t-emcnally@microsoft.com>
Date: Mon Jun 27 16:16:17 2022 -0700
fixing merge conflict
commit 098e20fbcc3fbf1c293afc511b9cd5500210c5d3
Author: mcnallyella <t-emcnally@microsoft.com>
Date: Mon Jun 27 16:14:48 2022 -0700
first draft spec
commit f8263b12f2550d115c33975586fd20c86dd0984b
Author: mcnallyella <t-emcnally@microsoft.com>
Date: Mon Jun 27 14:48:49 2022 -0700
draft spec
commit 62e7d0af8e44e730b827960bb89de88648aa334b
Merge: b5befcb c787536
Author: mcnallyella <54944263+mcnallyella@users.noreply.github.com>
Date: Mon Jun 27 14:52:16 2022 -0700
Merge pull request #11865 from NuGet/dev-mcnallyella-packageSourceMappingVSOptions
Create spec for package source mapping in VS options
commit 6f80ddbfcd9031002d89928279aafb03212400d6
Author: mcnallyella <t-emcnally@microsoft.com>
Date: Mon Jun 27 14:48:49 2022 -0700
draft spec
commit a89f7fd5af9df6a09496e5212aab9a744378c8b0
Author: Kartheek Penagamuri <52756182+kartheekp-ms@users.noreply.github.com>
Date: Thu Jun 23 21:33:05 2022 -0700
update
commit e01cd9b8f74700c8f1ec42c806ebfd8513bbd34b
Author: Kartheek Penagamuri <52756182+kartheekp-ms@users.noreply.github.com>
Date: Thu Jun 23 21:31:59 2022 -0700
update
commit 9bbd4a8fae81ea49c407a815b0826d5e3bfecb6f
Author: Kartheek Penagamuri <52756182+kartheekp-ms@users.noreply.github.com>
Date: Thu Jun 23 21:30:03 2022 -0700
update
commit 22a50b360d1208ba4a2bc2bcfe0e0bfe031a12e3
Author: Kartheek Penagamuri <52756182+kartheekp-ms@users.noreply.github.com>
Date: Thu Jun 23 21:28:29 2022 -0700
typo
commit cf1b3ef6c880565b291f61b654af195d83e6f5e7
Author: Heng Liu <liu.heng@microsoft.com>
Date: Thu Jun 23 15:05:39 2022 -0700
add .github/fabricbot.json
commit c87a6db159a5d8b7a4aa2733666458f337a2d1a3
Author: Kartheek Penagamuri <52756182+kartheekp-ms@users.noreply.github.com>
Date: Thu Jun 23 14:38:09 2022 -0700
typo
commit fdc275bbf21a934114e8943b633a07488a078950
Author: Kartheek Penagamuri <52756182+kartheekp-ms@users.noreply.github.com>
Date: Thu Jun 23 14:25:46 2022 -0700
fix typo (package)
commit 65090295251306800b4468d0dc8370400834bc77
Author: Kartheek Penagamuri <kapenaga@microsoft.com>
Date: Thu Jun 23 13:14:55 2022 -0700
typo
commit 3990c047eafd31652b80a9c3c38df72847379087
Author: Kartheek Penagamuri <kapenaga@microsoft.com>
Date: Thu Jun 23 13:13:59 2022 -0700
updates
commit b31635b74b1789f5238f1fbe3a38aa927ea1ac98
Author: Kartheek Penagamuri <kapenaga@microsoft.com>
Date: Thu Jun 23 13:00:29 2022 -0700
updates
commit cd93547d8576cc5bc233cf78aca538a21c132263
Author: Kartheek Penagamuri <kapenaga@microsoft.com>
Date: Thu Jun 23 12:42:09 2022 -0700
more updates
commit 041684f6812281df81e0b5c9d18c80add6ed4252
Author: Kartheek Penagamuri <kapenaga@microsoft.com>
Date: Thu Jun 23 12:29:57 2022 -0700
more updates to the document
commit 858b4ad835463fc2d8b16f405f4994aa49643239
Author: Kartheek Penagamuri <52756182+kartheekp-ms@users.noreply.github.com>
Date: Thu Jun 23 07:57:38 2022 -0700
work
commit 7e689ac67bdc44247033c976b756e7f8f762439d
Author: Kartheek Penagamuri <52756182+kartheekp-ms@users.noreply.github.com>
Date: Wed Jun 22 18:11:10 2022 -0700
update
commit 773a7c81aa6db07ccc31e37b6b9a9346f5b5091e
Author: Kartheek Penagamuri <52756182+kartheekp-ms@users.noreply.github.com>
Date: Wed Jun 22 18:07:49 2022 -0700
more updates
commit 39d848ce97842053596742ddd2b681f3526c0067
Author: Kartheek Penagamuri <52756182+kartheekp-ms@users.noreply.github.com>
Date: Wed Jun 22 17:59:57 2022 -0700
more updates
commit 7ec3ecb977e5415f87678b5279ea7bd0fba470de
Author: Kartheek Penagamuri <52756182+kartheekp-ms@users.noreply.github.com>
Date: Wed Jun 22 16:43:44 2022 -0700
work
commit c007b1fdadc436248d6f5187532d6d71c29fe09b
Author: pragnya17 <59893188+pragnya17@users.noreply.github.com>
Date: Tue Jun 21 16:09:59 2022 -0700
changing the wording here
commit 809b3576e37707a9ac31b55c2ddabeaa997d8564
Author: pragnya17 <59893188+pragnya17@users.noreply.github.com>
Date: Tue Jun 21 16:03:23 2022 -0700
rearrange the intro
commit a001db878bea9950ee14d828b26ad2cdc3fa0d7b
Author: pragnya17 <59893188+pragnya17@users.noreply.github.com>
Date: Tue Jun 21 15:26:43 2022 -0700
add version parameter to additional improvements section
commit e5ef82fba3282781dc23210e524ba0ad7a1ad617
Author: pragnya17 <59893188+pragnya17@users.noreply.github.com>
Date: Tue Jun 21 15:21:42 2022 -0700
Fixed header
commit b5befcbb6aadec49145bc17657658737ec48b0b7
Author: Barry Dorrans <github.com@idunno.org>
Date: Mon Jun 20 13:47:26 2022 -0700
Update to the preferred MSRC format (#11887)
commit b78083ff1ea97383c791c0be06a69d8fd458dd1d
Merge: 78b5f27 2ad4cbf
Author: Kartheek Penagamuri <52756182+kartheekp-ms@users.noreply.github.com>
Date: Fri Jun 17 09:58:19 2022 -0700
Revised proposal for Adding dotnet CLI support for projects onboarded to CPM
Revised proposal for Adding dotnet CLI support for projects onboarded to CPM
commit 2ad4cbf884186adae1571cc46adc745b9154bdcd
Author: Kartheek Penagamuri <52756182+kartheekp-ms@users.noreply.github.com>
Date: Thu Jun 16 14:07:14 2022 -0700
update
commit 0d3fcf2779904a323180c50cbeb16f866774084e
Author: Kartheek Penagamuri <52756182+kartheekp-ms@users.noreply.github.com>
Date: Thu Jun 16 14:04:47 2022 -0700
update
commit c7af6be259a1bee27107c05738fede9e0eb2546f
Author: Kartheek Penagamuri <52756182+kartheekp-ms@users.noreply.github.com>
Date: Thu Jun 16 14:01:48 2022 -0700
updated spec for example 2 the package reference does exist
commit …
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Introduction to an auditing experience at package restore time where known vulnerabilities will be reported.
This proposal introduces new MSBuild warnings and output to the NuGet restore operation.
Rendered Spec
Please 👍 or 👎 this comment to help us with the direction of this feature & leave as much feedback/questions/concerns as you'd like on this issue itself and we will get back to you shortly.
Thank You 🎉