jsonwebtoken security vulnerability
girwin90 opened this issue · comments
Garry Irwin commented
Hi,
Just raising an issue I was given via snyk - https://security.snyk.io/vuln/SNYK-JS-JSONWEBTOKEN-3180022 I was wondering whether a fix will be put in to update the jsonwebtoken package?
Thanks.
Kado commented
Hi,
We always use a defined algorithm (i.e: RS256
) whenever we use the verify
method.
Thanks