vulnerability in passport-jwt's dependancy jsonwebtoken
Closed this issue · 7 comments
rprakash05 commented
Updating to jsonwebtoken's latest version 9.0.0 resolves the vulnerability
Vulnerability details : GHSA-27h2-hvpr-p74q
PetrShchukin commented
dfernandesbsolus commented
We have the same problem!
aperona-hai commented
Went ahead and created #245
Shereef commented
@mikenicholson Please merge #245 and release ASAP Snyk is stopping our app from going to production with this version
Thank you!
prince-kumar95 commented
I'm too facing this issues with snyk. @mikenicholson please let me know when will this be merged and released.
Thanks
mikenicholson commented
4.0.1 bumps the jsonwebtoken dependnecy and has been release to NPM
Shereef commented
Thanks so much !!