ARTICLE AD BOX
We are using the System.Management.Automation nuget package version 7.0.13 in our .net core 3.1 dll. Our scan tool blackduck is reporting a high vulnerabilty for the package Microsoft.PowerShell.Native v7.0.0 which is coming from the System.Management.Automation.
We have tried manually upgrading the Microsoft.PowerShell.Native to the latest version, it resolve the vulenability but it bring another security vulnerability. So We dont have this option.
We have also tried replacing the System.Management.Automation with the Microsoft.PowerShell.5.1.ReferenceAssemblies but its only for windows not for the mac.
So We are kind of blocked, so could you please help us on this? The SLA due date is very near.
