When NuGet installs a package containing a '\build' folder, it automatically adds an MSBuild <Import> element to the project, referencing the .targets and .props files in that folder.

According to ReversingLabs, the packages detected by Phylum were likely part of a larger coordinated campaign on NuGet Gallery that started in August and resulted in several hundred malicious ...

This allows excluding the packages directory from version control as the build machine can retrieve the packages and thus doesn't need a checked-in version of the NuGet packages." Developers have ...

Threat actors are targeting and infecting .NET developers with cryptocurrency stealers delivered through the NuGet repository and impersonating multiple legitimate packages via typosquatting.

NuGet has nothing to do with the GAC. I've found it useful - what I did was stuff a NuGet.Config at my branch root pointing at a shared Packages folder which is stuffed into TFS.

NuGet also allows you to attach searchable documentation to your package to ensure that a developer can find your package, recognize it and know what your code does. In that article, I showed how to ...