Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix(cactus-validator-socketio-indy): upgrade pyjwt to 2.4.0 #2614

Closed
petermetz opened this issue Aug 13, 2023 · 0 comments · Fixed by #2615
Closed

fix(cactus-validator-socketio-indy): upgrade pyjwt to 2.4.0 #2614

petermetz opened this issue Aug 13, 2023 · 0 comments · Fixed by #2615
Assignees
@petermetz
Labels
bug Something isn't working dependencies Pull requests that update a dependency file P1 Priority 1: Highest Security Related to existing or potential security vulnerabilities
Milestone
v2.0.0-alpha.2

Comments

@petermetz
Copy link
Contributor

CVE ID CVE-2022-29217

GHSA ID GHSA-ffqj-6fqr-9h24

GHSA-ffqj-6fqr-9h24

https://github.com/hyperledger/cacti/security/dependabot/175
@petermetz petermetz added bug Something isn't working dependencies Pull requests that update a dependency file P1 Priority 1: Highest python Security Related to existing or potential security vulnerabilities labels Aug 13, 2023
@petermetz petermetz self-assigned this Aug 13, 2023
@petermetz petermetz added this to the v2.0.0-alpha.2 milestone Aug 13, 2023
petermetz added a commit to petermetz/cacti that referenced this issue Aug 13, 2023
@petermetz
fix(cactus-validator-socketio-indy): upgrade pyjwt to 2.4.0
75119ef 
CVE ID CVE-2022-29217

GHSA ID GHSA-ffqj-6fqr-9h24

GHSA-ffqj-6fqr-9h24

https://github.com/hyperledger/cacti/security/dependabot/175

Fixes hyperledger-cacti#2614

Signed-off-by: Peter Somogyvari <peter.somogyvari@accenture.com>
@petermetz petermetz mentioned this issue Aug 13, 2023
Merged
petermetz added a commit to petermetz/cacti that referenced this issue Aug 16, 2023
@petermetz
fix(cactus-validator-socketio-indy): upgrade pyjwt to 2.4.0
fdeb6b1 
CVE ID CVE-2022-29217

GHSA ID GHSA-ffqj-6fqr-9h24

GHSA-ffqj-6fqr-9h24

https://github.com/hyperledger/cacti/security/dependabot/175

Fixes hyperledger-cacti#2614

Signed-off-by: Peter Somogyvari <peter.somogyvari@accenture.com>
petermetz added a commit that referenced this issue Aug 17, 2023
@petermetz
fix(cactus-validator-socketio-indy): upgrade pyjwt to 2.4.0
59f9f91 
CVE ID CVE-2022-29217

GHSA ID GHSA-ffqj-6fqr-9h24

GHSA-ffqj-6fqr-9h24

https://github.com/hyperledger/cacti/security/dependabot/175

Fixes #2614

Signed-off-by: Peter Somogyvari <peter.somogyvari@accenture.com>
sandeepnRES pushed a commit to sandeepnRES/cacti that referenced this issue Dec 21, 2023
@petermetz @sandeepnRES
fix(cactus-validator-socketio-indy): upgrade pyjwt to 2.4.0
9fb66d4 
CVE ID CVE-2022-29217

GHSA ID GHSA-ffqj-6fqr-9h24

GHSA-ffqj-6fqr-9h24

https://github.com/hyperledger/cacti/security/dependabot/175

Fixes hyperledger-cacti#2614

Signed-off-by: Peter Somogyvari <peter.somogyvari@accenture.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@petermetz petermetz

Labels
bug Something isn't working dependencies Pull requests that update a dependency file P1 Priority 1: Highest Security Related to existing or potential security vulnerabilities
Projects
None yet
Milestone
v2.0.0-alpha.2
Development

Successfully merging a pull request may close this issue.

fix(cactus-validator-socketio-indy): upgrade pyjwt to 2.4.0 petermetz/cacti
1 participant
@petermetz