[OneSignal Plugin] Inquiry on Newtonsoft.Json Library Version

Back to Forums

nicksgg

Question

Mobile

Forge

Application Type

Mobile

Hi,

I’m currently using the Plugin and noticed that it references Newtonsoft.Json version 11.0.0.0. I’d like to check if there are any plans to upgrade this library to a more recent and secure version.

Additionally, I’d appreciate some clarification on whether this version of Newtonsoft.Json is actively being used within the plugin, or if it’s an unused dependency that could potentially be removed. There have been some concerns around vulnerabilities in older versions of Newtonsoft.Json, so understanding this would help assess any associated risks.

Thank you for your support and the great work on this plugin. Looking forward to your response.

Best regards, Nick

25 Feb 2025

Pedro Gomes

Staff

Hi Nick,

Thank you for raising that concern. We don't have that on the immediate roadmap but if there are security concerns we will surely look into it.

Can you point me to information about those issues?

Thank you

27 Feb 2025

Community GuidelinesBe kind and respectful, give credit to the original source of content, and search for duplicates before posting.

See the full guidelines