JWT known Critical vulnerabilities #502
-
|
Hi, Just wanted to confirm does this package contain JWT known Critical vulnerabilities? https://auth0.com/blog/critical-vulnerabilities-in-json-web-token-libraries/ Thanks for making this package! |
Beta Was this translation helpful? Give feedback.
Replies: 1 comment 5 replies
-
|
Silly to have to confirm this way rather than try on your own. This package does not contain any known vulnerabilities. |
Beta Was this translation helpful? Give feedback.
-
|
The linked article specifically mentions |
Beta Was this translation helpful? Give feedback.
-
|
Javascript Object Signing and Encryption |
Beta Was this translation helpful? Give feedback.
-
|
Close enough. Would have been a nice shout-out though 👀 |
Beta Was this translation helpful? Give feedback.
-
|
I don't understand your comments. The article does not mention this library, this library didn't even exist at the time it was written. JOSE is the acronym used for the whole JW[STEAK] family of RFCs produced mainly by the JOSE IETF Working Group. |
Beta Was this translation helpful? Give feedback.
-
|
Well, it probably won't be the last time I'm wrong about something. |
Beta Was this translation helpful? Give feedback.
Silly to have to confirm this way rather than try on your own. This package does not contain any known vulnerabilities.