search

ExpressGateway / express-gateway

A microservices API Gateway built on top of Express.js
https://www.express-gateway.io
Apache License 2.0
2.96k stars 344 forks source link

Snyk Code Analysis (jsonwebtoken) - Use of a Broken or Risky Cryptographic Algorithm Vulnerability #1061

Open dev-script opened 1 year ago

dev-script commented 1 year ago

Issue: jsonwebtoken@8.5.1 Fixed In: jsonwebtoken@9.0.0

Introduced through: express-gateway@1.16.11 › jsonwebtoken@8.5.1

Please upgrade internal package jsonwebtoken (v8.5.1 to v9.0.0) of express-gateway

Screenshot 2023-04-11 at 12 32 46 PM