search

twilio / twilio-go

A Go package for communicating with the Twilio API.
MIT License
271 stars 40 forks source link

Update jwt dependency #216

Open andreyoparin opened 8 months ago

andreyoparin commented 8 months ago

Issue Summary

We plan update jwt to v4.5.0 in our project for fix security reason.

We can't do it, twilio-go depends on jwt v3.2.2+incompatible.

Please update jwt dependency in twilio-go.

See github.com/golang-jwt/jwt/v4

jwt v4.5.0 is backward compability with jwt 3.x.y.

tiwarishubham635 commented 1 month ago

Can you share which security vulnerability?