Name: [INPERSON] Do you trust your NuGet packages?
Start: 2025-10-21T18:00:00+02:00
End: 2025-10-21T21:00:00+02:00
Location: TechTalk GmbH

This event is for people who join the event in person at [TechTalk](https://techtalk.at).

If you join the event remotely, please RSVP here: [https://www.meetup.com/dotnet-austria/events/311363578](https://www.meetup.com/dotnet-austria/events/311363578)

This meetup is organized by DotNetDevs.at ([https://dotnetdevs.at/](https://dotnetdevs.at/)).

**Abstract**
For over 14 years, modern .NET development has heavily relied on NuGet packages. But with this convenience comes risk. While supply chain attacks via packages are less frequent in the .NET ecosystem than in the JavaScript world, it is only a matter of time before we face a serious incident.

NuGet and .NET offer features that improve developer productivity — but in the wrong combinations, other features can be abused to execute malicious code during something as simple as a package restore. Understanding these inner workings is key to protecting your applications.

In this talk, you’ll learn how to critically evaluate NuGet packages, identify potential risks, and decide whether they deserve your trust.

Andreas "SabotageAndi" Willich, Team Lead & Senior Software Developer at TechTalk and Chairman of DotNetDevs.at, will share practical insights to help your team safeguard its development loop. After this talk, you will never look at NuGet packages the same way again.

Location, Food & Drinks are sponsored by [TechTalk](https://techtalk.at).

**Timetable:**

* 18:00: Door opens at [TechTalk](https://techtalk.at)
* 18:30: Intro
* 18:35: Talk starts
* 19:30: Food & Drinks
* 21:00: End

Recordings will be available afterward at [https://go.dotnetdevs.at/recordings](https://go.dotnetdevs.at/recordings)

This meetup is organized by DotNetDevs.at ([https://dotnetdevs.at/](https://dotnetdevs.at/)).

DotNetDevs.at is sponsored by

* RUBICON IT GmbH ([https://www.rubicon.eu/rubicon/](https://www.rubicon.eu/rubicon/))
* JetBrains ([https://jetbrains.com](https://jetbrains.com))

Raoul Holzer

Andreas Willich

Stefan Pölz

Martin Ullrich

.NET Community Austria by DotNetDevs.at

Technology

Open Source

Computer Programming

.NET

Software Development

JavaScript

Web Development

Domain Driven Design

NoSQL

HTML5

CQRS

[INPERSON] Do you trust your NuGet packages?

TechTalk GmbH

Share

.NET Community Austria by DotNetDevs.at

[INPERSON] Do you trust your NuGet packages?

.NET Community Austria by DotNetDevs.at

Details

Members are also interested in