Why is "accept" package signature verification so thorough? #12295
Unanswered
gabriela-lungu-uip
asked this question in
Q&A
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
We use Nuget Client API to restore packages as part of our delivered software and one of our clients reported what we traced was the cause for this issue: #7008 .
Setting environment variable NUGET_CERT_REVOCATION_MODE to "offline" fixes the issue, but why is "accept" certificate validation so thorough and does so many checks ?
Beta Was this translation helpful? Give feedback.
All reactions