Almost any dotnet application has several NuGet dependencies, and those dependencies may have their own dependencies, and so on and so forth. What if any of those dependencies you’re using contains a security vulnerability? You can check on your CI/CD pipeline if your application has any known NuGet vulnerability with just a couple of lines of bash script.

In this post I want to show you some of the different options available when you want to centrally manage NuGet versions within a solution.

In this post I’ll show you how to restore NuGet packages from an Azure DevOps private feed when building a Docker image.