You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Hello,
any chance, the package will be updated to use jsonwebtoken 9.0.0 in the near future?
The current version shows a critical vulnerarbility regarding jwt.verify()
Dependabot has already created a PR with the proposed changes. A test fails though as unverified verify() calls are forbidden since 9.0.0.
Thank you!
The text was updated successfully, but these errors were encountered:
Hello,
any chance, the package will be updated to use jsonwebtoken 9.0.0 in the near future?
The current version shows a critical vulnerarbility regarding
jwt.verify()Dependabot has already created a PR with the proposed changes. A test fails though as unverified
verify()calls are forbidden since 9.0.0.Thank you!
The text was updated successfully, but these errors were encountered: