python-jose icon indicating copy to clipboard operation
python-jose copied to clipboard

verified publisher icon mpdavis

Metadata

A JOSE implementation in Python

Results 123 python-jose issues
Sort by recently updated
recently updated
newest added

New version?🤔

3 comment

https://github.com/mpdavis/python-jose/compare/3.3.0...master shows 19 commits since last release which was +2 years ago. Do you have any plans to flush those commits and release new version .. soon? 🤔

kloczek avatar kloczek

Fix Error -3 decompress when using JWE with deflate

Fixes header error with compression DEFLATE when decrypting payloads generated by Go,Java, and PHP JOSE implementations. I do no know if this effects other implementations, this is a bug our...

tebruno99 avatar tebruno99

Import Mapping Error

2 comment

Hi. Please change 6-th line in `jwt.py` form `from collections import Mapping` to ``` try: from collections.abc import Mapping except ImportError: from collections import Mapping ``` And change 6-th line...

sazhyk avatar sazhyk

Add RTD config file to silence emailed deprecation warnings

1 comment

RTD has sent out multiple deprecation notices regarding config files and options in the config file. Adding this config file should silence them.

blag avatar blag

Problem validating JWK in JWT with diverse keyset (from PingFederate)

``` jose.exceptions.JWKError: Incorrect key type. Expected: 'oct', Received: EC ``` (happening in the `CryptographyHMACKey` class) If I understand what is happening correctly, the key-type is taken from the header of...

stevecj avatar stevecj

Missing parentheses

2 comment

Hallo, I'm using Python 3.10.6 and I just started building a new JWT-based API with PyCharm 2023.1.3 (Community Edition). I wrote only few lines of code - not related with...

ricciarellif avatar ricciarellif

Add SECURITY.md

Hello 👋 I run a security community that finds and fixes vulnerabilities in OSS. A researcher (@mr-n30) has found a potential issue, which I would be eager to share with...

psmoros avatar psmoros

jwk.py

Hello world, The function `construct` in https://github.com/mpdavis/python-jose/blob/4b0701b46a8d00988afcc5168c2b3a1fd60d15d8/jose/jwk.py#L63 contains an `Generation of Error Message Containing Sensitive Information` vulnerability that allows an attacker to view the victims `Secret Key` that is used...

mr-n30 avatar mr-n30

Update jwk.py

Fix for `Generation of Error Message Containing Sensitive Information` vulnerability

mr-n30 avatar mr-n30

Bump cryptography from 39.0.1 to 41.0.3

2 comment

Bumps [cryptography](https://github.com/pyca/cryptography) from 39.0.1 to 41.0.3. Changelog Sourced from cryptography's changelog. 41.0.3 - 2023-08-01 * Fixed performance regression loading DH public keys. * Fixed a memory leak when using :class:`~cryptography.hazmat.primitives.ciphers.aead.ChaCha20Poly1305`....

dependabot[bot] avatar dependabot[bot]

dependencies

Metadata

1.5k
Stars
232
Forks
Watchers

Owner

verified publisher icon mpdavis

Metadata

A JOSE implementation in Python

Back