#NuGetDefense (the #foss #security tool) has a new prerelease (v4.1.0-pre0001). It's deprecating the dotnet list parsing and will now parse the project.assets.json file for resolved dependencies.

I'm expecting this to weed out the intermittent dotnet list errors. But I need brave souls to give it a test drive before it releases.