-
Notifications
You must be signed in to change notification settings - Fork 140
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
how to update dependencies? #238
Comments
Not possibe. I really do dislike CVE-2021-46743 because vulnerability scanners tag it has critical even though there is no vulnerability. Even the report itself says: "NOTE: this provides a straightforward way to use the PHP-JWT library unsafely, but might not be considered a vulnerability in the library itself." |
With I had to update the interface of my library to allow for the workaround, by introducing a I was also forced to bump the major version in order to mitigate the issue by-default, as they did in |
@dakujem I had totally missed this. Thanks! |
Can you help me update the dependencies? Gitlab SAST show me an error and I need update to firebase/php-jwt ^6
Thank you.
The text was updated successfully, but these errors were encountered: