-
Notifications
You must be signed in to change notification settings - Fork 236
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Bump jose to v5 #403
Comments
agreed, seeing as JOSE 4.15 is now flagged by audit:
|
It clearly is https://github.com/panva/jose#supported-versions
4.15.5 and 2.0.7 was released as per the Supported Versions matrix to fix the vulnerability in those release lines.
not necessary, all you need to do is to run whatever equivalent of |
Hi team, do we have any plan to ship in this pr? |
Hi guys, any update on this? We would like to upgrade |
Checklist
Describe the problem you'd like to have solved
I believe jose v4 is no longer supported
Describe the ideal solution
bump dependency to v5
Alternatives and current workarounds
No response
Additional context
No response
The text was updated successfully, but these errors were encountered: