Skip to content

[Feature]: dotnet list package --vulnerable could have an non-zero exit code when a vulnerable package is found #11315

Closed as not planned
Closed as not planned
[Feature]: dotnet list package --vulnerable could have an non-zero exit code when a vulnerable package is found#11315
Labels
Area:NuGetAuditCategory:Quality WeekIssues that should be considered for quality weekFunctionality:ListPackagedotnet.exe list packagePriority:2Issues for the current backlog.Product:dotnet.exeSeQualityTriage:NeedsTriageDiscussionType:Feature
@reality77

Description

@reality77
reality77
opened on Oct 15, 2021

NuGet Product(s) Involved

dotnet.exe

The Elevator Pitch

dotnet list package --vulnerable is a great feature we can use in CI workflows.

It would be great to quickly know if a project is vulnerable during the CI processes without having to parse the output of the command.

A quick way to achieve this would be to add an option like --exit-code (just an example) and then the command would return a non-zero exit code if there is at least one vulnerable package.

Additional Context and Details

No response

Metadata

Metadata

Assignees

No one assigned

    Labels

    Area:NuGetAuditCategory:Quality WeekIssues that should be considered for quality weekFunctionality:ListPackagedotnet.exe list packagePriority:2Issues for the current backlog.Product:dotnet.exeSeQualityTriage:NeedsTriageDiscussionType:Feature

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions