Update pysaml2 to fix known vulnerability

Question

Update pysaml2 to fix known vulnerability

ayr-ton opened this issue 6 years ago · 1 comments

https://github.com/ayr-ton/kamu/network/alerts

Currently, there's no updated version that fixes this issue, I'm one of the maintainers of this plugin.

As this plugin is not an authentication backend for Django we may or update the plugin for supporting this or migrate to a new one that supports this.

Also, there's always the possibility of just fixing the initialization vector across encryptions and release a new plugin version with this.

Answer 1 · 2020-10-25T18:37:08.000Z

pysaml2 was already updated.