MSE icon indicating copy to clipboard operation
MSE copied to clipboard

Published 20 hours ago verified publisher icon GDATASoftwareAG

Bump JWT from 8.9.0 to 10.0.2

Open dependabot[bot] opened this issue 1 year ago • 0 comments

Bumps JWT from 8.9.0 to 10.0.2.

Changelog

Sourced from JWT's changelog.

10.0.2

  • Disallowed Encode(payload) with AddClaim(s)

10.0.1

  • Fixed deserializing JWT header
  • Updated Newtonsoft.Json to version to 13.0.2
  • Updated System.Text.Json to version 6.0.7

10.0.0

  • Made NoneAlgorithm not requiring any keys as it is not signed
  • Added option to select default serializer, Newtonsoft.Json or System.Text.Json (#433)
  • Renamed default IdentityFactory in Jwt.Extensions.AspNetCore, opened up for inheritance, extension (#428)
  • Added Encode(T) and Encode(Type, object) to JwtBuilder (#415)
  • Updated Newtonsoft.Json to version 13.0.1
  • Fixed typos in exception messages
  • Made verify=true by default in IJwtDecoder methods
Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

dependabot[bot] avatar Feb 01 '23 04:02 dependabot[bot]