Closed judysng closed 4 months ago
python-jose[cryptography]
python-jose
ecdsa
Ran pytest, deployed, created/deleted cluster
In order to increase the likelihood of your contribution being accepted, please make sure you have read both the Contributing Guidelines and the Project Guidelines
By submitting this pull request, I confirm that you can use, modify, copy, and redistribute this contribution, under the terms of your choice.
Installing python-jose with a specific backend was a very good approach to bypass the edcsa CVE. Good job!
Changes
python-jose[cryptography]
instead of justpython-jose
to use the cryptography backend instead ofecdsa
backendHow Has This Been Tested?
Ran pytest, deployed, created/deleted cluster
In order to increase the likelihood of your contribution being accepted, please make sure you have read both the Contributing Guidelines and the Project Guidelines
By submitting this pull request, I confirm that you can use, modify, copy, and redistribute this contribution, under the terms of your choice.