A vulnerability scan flagged the upstream dependency cryptography (pycognito -> pyjwt[crypto] -> cryptography) that is fixed for versions > 42.0.4. See: https://github.com/advisories/GHSA-6vqw-3v5j-54x4
This update to cryptography causing breaking changes where:
Hello,
A vulnerability scan flagged the upstream dependency cryptography (pycognito -> pyjwt[crypto] -> cryptography) that is fixed for versions > 42.0.4. See: https://github.com/advisories/GHSA-6vqw-3v5j-54x4
This update to cryptography causing breaking changes where:
Results in:
with the error occurring upstream in jwt
If you attempt to pass the tokens in as bytes you get:
Where the error occurs within pycognito.
I have created a PR to fix this breaking change by handling the cases at these two points of failure: #222