Avoid upgrading Moq | Replace by another lib

Question

Avoid upgrading Moq | Replace by another lib

Tr00d opened this issue a year ago · 2 comments

Tr00d commented a year ago

Due to recent privacy issues, the following is required:

Avoid upgrading Moq. The malware version (4.20.0) have been removed from the nuget repository, the latest version (4.20.2) looks safe.
Replace Moq by another library. This is definitely a trust concern. The good news is Moq is not used in latest implementations (WireMock is), so this move forward over time.

Answer 1 · 2023-08-10T07:16:16.000Z

@Tr00d 4.20.2 I think is also unsafe, stay on 4.18.4 if youre keeping Moq

Answer 2 · 2023-08-10T07:20:04.000Z

@SimonPriceUL Thanks for letting me know. I'll definitely keep an eye on this. My main goal is to remove Moq entirely as I don't really need it. This is for the 'legacy' side of things