google/data-transfer-project

There is a vulnerability in Nimbus-JOSE-JWT 5.14,upgrade recommended

QiAnXinCodeSafe opened this issue 3 years ago · 0 comments

QiAnXinCodeSafe commented 3 years ago

data-transfer-project/extensions/security/portability-security-jwe/build.gradle

Line 23 in d5c4479

compile group: 'com.nimbusds', name: 'nimbus-jose-jwt', version: '5.14'

Recommended upgrade version：6.18.2