Skip to content

Project pins insecure old version of joserfc library, #144

Closed
#146
Closed
Project pins insecure old version of joserfc library,#144
#146

Description

@rbubley
Russ Bubley (rbubley)
opened on Apr 14, 2026

The joserfc library is currently pinned to <1.3 in pyproject.toml. This is vulnerable to CVE-2026-27932.

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions