Nugetauditsuppress Jun 2026

You can't suppress what you can't see. If your build is failing and you need the ID, check your build logs or the Error List in Visual Studio. It usually looks like this:

NuGetAuditSuppress is an MSBuild property introduced in .NET 8 (and backported to certain .NET 7 SDKs) to control the feature. By default, dotnet restore and dotnet build report known security vulnerabilities in your project’s transitive or direct packages. Setting NuGetAuditSuppress to true silences these warnings entirely. nugetauditsuppress

If you are working in a monorepo or have many related projects, define your suppressions in a Directory.Build.props file at the root of your repository. This ensures consistent security policy across all projects. 2. Differentiate Local vs. CI Builds Microsoft Learn Auditing package dependencies for security vulnerabilities You can't suppress what you can't see

dotnet restore -p:NuGetAuditSuppress=true dotnet build -p:NuGetAuditSuppress=true By default, dotnet restore and dotnet build report

: Advisories should not be suppressed forever. Treat these items as technical debt to be re-evaluated during regular maintenance cycles.

This audit is controlled by two main properties: