JWT vulnerability
17 views
Skip to first unread message
Carlo Hamalainen
Apr 7, 2015, 12:27:10 AM4/7/15
to tardis...@googlegroups.com
Hi,
Just thought the list would like to know that a critical vulnerability
was found in some JWT libraries:
https://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/
I've got a PR to update the version constraint of PyJWT:
https://github.com/mytardis/mytardis/pull/412
Cheers,
============================================
Dr Carlo Hamalainen
Senior Software Engineer
Centre for Advanced Imaging
University of Queensland
St Lucia, QLD, 4072. AUSTRALIA
E: c.hama...@uq.edu.au
============================================
Just thought the list would like to know that a critical vulnerability
was found in some JWT libraries:
https://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/
I've got a PR to update the version constraint of PyJWT:
https://github.com/mytardis/mytardis/pull/412
Cheers,
============================================
Dr Carlo Hamalainen
Senior Software Engineer
Centre for Advanced Imaging
University of Queensland
St Lucia, QLD, 4072. AUSTRALIA
E: c.hama...@uq.edu.au
============================================
Grischa Meyer
Apr 7, 2015, 8:48:28 PM4/7/15
to tardis...@googlegroups.com
Thanks, Carlo!
I pulled your update into the develop and 3.6 branches.
Cheers
--
You received this message because you are subscribed to the Google Groups "tardis-devel" group.
To unsubscribe from this group and stop receiving emails from it, send an email to tardis-devel...@googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
Reply all
Reply to author
Forward
0 new messages