Crista Perlton on August 30th, 2024.
NuGet is the go-to package manager for .NET and is built right into tools like Visual Studio, making adding, updating, and managing libraries super easy. By default, Visual Studio pulls packages from NuGet.org—but giving your team unrestricted access to all those packages can be risky. Over 80% of projects rely on outdated dependencies,...
Eric Seng on April 11th, 2024.
Learn about the complexities of NuGet, the risks of using third-party packages from NuGet.org, and how to effectively manage both proprietary and open-source packages in the enterprise.
Eric Seng on October 9th, 2023.
When you develop .NET applications, you most certainly will work with NuGet packages to manage libraries and dependencies. Making sure these packages are safe for production use is a crucial responsibility. Chances are you've also used the NuGet or dotnet CLI to scan all your packages.
Eric Seng on October 2nd, 2023.
Debugging your NuGet packages can be a total pain. In fact, it’s one of the main reasons that development teams are hesitant to break apart their monolithic .NET solution. Fortunately, there's a pretty easy solution to this problem; NuGet Symbol Packages. In this article I’ll discuss how.
Eric Seng on September 27th, 2023.
This article is part of our series on NuGet at Scale, also available as a chapter in our free, downloadable eBook. Are you deploying applications to production with packages downloaded directly from NuGet.org? Many organizations start this way—it’s the default behavior of most NuGet clients. But while convenient, this approach can...
Eric Seng on July 12th, 2023.
This article is part of our series on NuGet at Scale, also available as a chapter in our free, downloadable eBook. So, you set up a local, private NuGet repository on a network file share for your small team, and it worked great… At first. But as an organization scales and more packages (and more developers) join the mix, things...
Eric Seng on May 26th, 2023.
A quick explainer article to understand Symbols and Symbol packages for NuGet package debugging.
Eric Seng on May 9th, 2023.
Learn what Source Servers are, what SourceLink is, how they relate to Symbols, and how all three come together to help with NuGet package debugging.
Eric Seng on May 9th, 2023.
When NuGet packages are stored on third-party platforms, proprietary stuff isn't private. Setting up a private NuGet server is free and easy.
Eric Seng on May 1st, 2023.
What's the difference between GitHub Advisories, CVE, and NVD in terms of NuGet Vulnerability Scanning? How does it affect your packages?