[NuGet.org Bug]: fuget.org is not from trusted domains. #8856
Comments
|
@dimonovdd Thank you for your suggestion to add fuget.org. We evaluate each domain that we add to our allowlist from security and privacy perspective. Unfortunately, we are not able to add this domain into our allowlist now. After evaluation, the biggest concern we have is that fuget.org doesn't have proper privacy policy. We will consider to include in the future if they include proper privacy policy. Thanks, please let me know if you have any other question. For now, I suggest you to use other domain that in allowlist as alternative approach. |
|
This is strange because there is a link to fuget.org in the side menu. Maybe we should mention @praeclarum
|
|
@dimonovdd, from screenshot you shared, I guess it might be project website of one package. We allow package author to link to their project website if they are not scam link, or not violate a copyright along with other condition. We evaluate image allowlist and project link differently. Since we render those third party image at readme on NuGet.org, it has more privacy and security concerns. Our goal is to protect our customer data. Please let me know if you have more questions. |
|
related: #9783 |
Impact
It bothers me. A fix would be nice
Describe the bug
fuget.org is not from trusted domains.
Badges generated in fuget.org are not displayed in the Readme:
Repro Steps
Try using this badge in Readme:
https://www.fuget.org/packages/MSBuild.CompactJsonResources/badge.svg
Expected Behavior
a Badge should be displayed
Screenshots
Additional Context and logs
No response
The text was updated successfully, but these errors were encountered: