Closed NickEmpetvee closed 1 year ago
https://www.darkreading.com/vulnerabilities-threats/jsonwebtoken-security-bug-opens-servers-rce
It talks about how 9.0 is the safe JWT version.
This vulnerability targets a specific javascript library, no relation to what pgjwt uses internally. JS client code may need review, but that is another story.
@maparent Thank you.
https://www.darkreading.com/vulnerabilities-threats/jsonwebtoken-security-bug-opens-servers-rce
It talks about how 9.0 is the safe JWT version.