spring-reactive-jwt-sample icon indicating copy to clipboard operation
spring-reactive-jwt-sample copied to clipboard

Published 20 hours ago verified publisher icon hantsy

fix(deps): update jjwt.version to v0.12.6

Open renovate[bot] opened this issue 1 year ago • 1 comments

Mend Renovate

This PR contains the following updates:

Package Change Age Adoption Passing Confidence
io.jsonwebtoken:jjwt-jackson 0.12.5 -> 0.12.6 age adoption passing confidence
io.jsonwebtoken:jjwt-impl 0.12.5 -> 0.12.6 age adoption passing confidence
io.jsonwebtoken:jjwt-api 0.12.5 -> 0.12.6 age adoption passing confidence

Release Notes

jwtk/jjwt (io.jsonwebtoken:jjwt-jackson)

v0.12.6

Compare Source

This patch release:

  • Ensures that after successful JWS signature verification, an application-configured Base64Url Decoder output is used to construct a Jws instance (instead of JJWT's default decoder). See Issue 947.
  • Fixes a decompression memory leak in concurrent/multi-threaded environments introduced in 0.12.0 when decompressing JWTs with a zip header of GZIP. See Issue 949.
  • Upgrades BouncyCastle to 1.78 via PR 941.

Configuration

📅 Schedule: Branch creation - "before 4am on the first day of the month" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about these updates again.

  • [ ] If you want to rebase/retry this PR, check this box

This PR has been generated by Mend Renovate. View repository job log here.

renovate[bot] avatar Jul 01 '24 03:07 renovate[bot]