nuget.config

<?xml version="1.0" encoding="utf-8"?>
<configuration>

  <packageRestore>
    <!-- Allow NuGet to download missing packages -->
    <add key="enabled" value="True" />

    <!-- Automatically check for missing packages during build in Visual Studio -->
    <add key="automatic" value="True" />
  </packageRestore>

  <packageSources>
    <add key="repox_proxy" value="https://repox.jfrog.io/artifactory/api/nuget/nuget" />
  </packageSources>

  <packageSourceCredentials>
    <repox_proxy>
      <add key="Username" value="%ARTIFACTORY_USER%" />
      <add key="ClearTextPassword" value="%ARTIFACTORY_PASSWORD%" />
    </repox_proxy>
  </packageSourceCredentials>

  <config>
    <clear />
    <add key="signatureValidationMode" value="require" />
  </config>

  <trustedSigners>
    <clear />
    <author name="SonarSource">
      <!-- Sonar analyzer certificate -->
      <certificate fingerprint="A943C46DBA193D99C1135FFE33D3337524E9B3F05B416B9314E168CD206EF427" hashAlgorithm="SHA256" allowUntrustedRoot="false" />
    </author>
    <repository name="nuget.org" serviceIndex="https://api.nuget.org/v3/index.json">
      <!-- Subject Name: CN=NuGet.org Repository by Microsoft, valid from 10/04/2018 -->
      <certificate fingerprint="0E5F38F57DC1BCC806D8494F4F90FBCEDD988B46760709CBEEC6F4219AA6157D" hashAlgorithm="SHA256" allowUntrustedRoot="false" />
      <!-- Subject Name: CN=NuGet.org Repository by Microsoft, valid from 16/02/2021 -->
      <certificate fingerprint="5A2901D6ADA3D18260B9C6DFE2133C95D74B9EEF6AE0E5DC334C8454D1477DF4" hashAlgorithm="SHA256" allowUntrustedRoot="false" /> 
      <!-- Subject Name: CN=NuGet.org Repository by Microsoft, valid from 2024-02-23 -->
      <certificate fingerprint="1F4B311D9ACC115C8DC8018B5A49E00FCE6DA8E2855F9F014CA6F34570BC482D" hashAlgorithm="SHA256" allowUntrustedRoot="false" />
      <!-- sharwell = StyleCop.Analyzers -->
      <!-- neuecc,aarnott = https://github.com/neuecc/MessagePack-CSharp -->
      <!-- LegionOfTheBouncyCastle = BouncyCastle.Cryptography -->
      <!-- dsplaisted = StrongNamer -->
      <!-- devtility = AsmRef -->
      <!-- jamesnk = NewtonSoft -->
      <!-- whoisj = Microsoft.Alm.Authentication -->
      <!-- aspnet = Owin -->
      <!-- bmarshall = Microsoft.VisualStudio.CommandBars VS 2019 -->

      <!-- test dependencies: -->
      <!-- meirb = FluentAssertions.Analyzers -->
      <!-- kzu = Moq -->
      <!-- davetchepak = NSubstitute -->
      <!-- tpodolak = NSubstitute.Analyzers -->
      <!-- jonorossi = Castle Project -->
      <!-- onovotny = Humanizer.Core -->
      <!-- tatham = System.IO.Abstractions -->

      <!-- build tools: -->
      <!-- adamhathcock = SharpCompress -->
      <!-- SharpDevelop = SharpZipLib -->
      <!-- CycloneDX = SBOM -->
      <!-- cmn =  LibGit2Sharp  -->
      <!-- mmanela = DiffPlex-->
      <owners>protobuf-packages;Microsoft;sharwell;meirb;kzu;dotnetfoundation;castleproject;jonorossi;onovotny;fluentassertions;neuecc;aarnott;grpc-packages;tatham;dsplaisted;devtility;bmarshall;whoisj;aspnet;jamesnk;adamhathcock;SharpDevelop;CycloneDX;cmn;mmanela;davetchepak;tpodolak;LegionOfTheBouncyCastle</owners>
    </repository>
  </trustedSigners>
  <packageSourceMapping>
    <clear />
    <packageSource key="repox_proxy">
      <package pattern="*" />
    </packageSource>
  </packageSourceMapping>

</configuration>