sping-boot-shiro-jwt-redis issues

Bump fastjson from 1.2.58 to 1.2.83

Bumps [fastjson](https://github.com/alibaba/fastjson) from 1.2.58 to 1.2.83. Release notes Sourced from fastjson's releases. FASTJSON 1.2.83版本发布（安全修复）这是一个安全修复版本，修复最近收到在特定场景下可以绕过autoType关闭限制的漏洞，建议fastjson用户尽快采取安全措施保障系统安全。安全修复方案：https://github.com/alibaba/fastjson/wiki/security_update_20220523 Issues 安全加固修复JDK17下setAccessible报错的问题 #4077 下载 https://repo1.maven.org/maven2/com/alibaba/fastjson/1.2.83/ 文档 https://github.com/alibaba/fastjson/wiki/%E5%B8%B8%E8%A7%81%E9%97%AE%E9%A2%98 源码 https://github.com/alibaba/fastjson/tree/1.2.83 fastjson 1.2.79版本发布，BUG修复这又是一个bug...

dependabot[bot]

dependencies

Bump shiro-spring-boot-starter from 1.4.0 to 1.7.1

Bumps shiro-spring-boot-starter from 1.4.0 to 1.7.1. [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.apache.shiro:shiro-spring-boot-starter&package-manager=maven&previous-version=1.4.0&new-version=1.7.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a...

dependabot[bot]

dependencies

不够严谨

1

https://github.com/it-wwh/sping-boot-shiro-jwt-redis/blob/ba292335c2b9c62b6d3ebd23e10b03ee634bf604/src/main/java/cn/gathub/shiro/ShiroRealm.java#L146 只有当TokenExpiredException时刷新token是合理的

shanshouchen

sping-boot-shiro-jwt-redis
sping-boot-shiro-jwt-redis copied to clipboard

Metadata

Bump fastjson from 1.2.58 to 1.2.83

Bump shiro-spring-boot-starter from 1.4.0 to 1.7.1

不够严谨

← Metadata

Owner

Metadata

sping-boot-shiro-jwt-redis sping-boot-shiro-jwt-redis copied to clipboard

Metadata

Bump fastjson from 1.2.58 to 1.2.83

Bump shiro-spring-boot-starter from 1.4.0 to 1.7.1

不够严谨

← Metadata

Owner

Metadata

sping-boot-shiro-jwt-redis
sping-boot-shiro-jwt-redis copied to clipboard