dependabot[bot] 8f26317115 build(deps): bump github.com/golang-jwt/jwt/v4 from 4.4.1 to 4.4.2

Bumps [github.com/golang-jwt/jwt/v4](https://github.com/golang-jwt/jwt) from 4.4.1 to 4.4.2.
- [Release notes](https://github.com/golang-jwt/jwt/releases)
- [Changelog](https://github.com/golang-jwt/jwt/blob/main/VERSION_HISTORY.md)
- [Commits](https://github.com/golang-jwt/jwt/compare/v4.4.1...v4.4.2)

---
updated-dependencies:
- dependency-name: github.com/golang-jwt/jwt/v4
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

2022-08-31 12:58:24 +02:00

875 B

Raw Blame History

Security Policy

Supported Versions

As of February 2022 (and until this document is updated), the latest version v4 is supported.

Reporting a Vulnerability

If you think you found a vulnerability, and even if you are not sure, please report it to jwt-go-security@googlegroups.com or one of the other golang-jwt maintainers. Please try be explicit, describe steps to reproduce the security issue with code example(s).

You will receive a response within a timely manner. If the issue is confirmed, we will do our best to release a patch as soon as possible given the complexity of the problem.

Public Discussions

Please avoid publicly discussing a potential security vulnerability.

Let's take this offline and find a solution first, this limits the potential impact as much as possible.

We appreciate your help!

875 B Raw Blame History

Security Policy

Supported Versions

Reporting a Vulnerability

Public Discussions

875 B

Raw Blame History