-
Notifications
You must be signed in to change notification settings - Fork 382
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Upgrade jose
to mitigate dependabot alert
#1726
Comments
I think this should be prioritized:
|
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Checklist
Description
The currently referenced version of
jose
should be upgraded to at least4.15.5
due to a vulnerability.In our (private) repo dependabot alerts on that.
Reproduction
GHSA-hhhv-q57g-882q
Additional context
No response
nextjs-auth0 version
3.5.0
Next.js version
Node.js version
20
The text was updated successfully, but these errors were encountered: