warehouse icon indicating copy to clipboard operation
warehouse copied to clipboard

Published 20 hours ago verified publisher icon pypi

Trusted publishing: prevent OIDC credential re-use

Open DarkaMaul opened this issue 1 year ago • 0 comments

Fixes https://github.com/pypi/warehouse/issues/16194

This PR uses a Redis cache to keep JWT token identifiers in memory until their expiration. It then prevents reusing an already used JWT to mint a new OIDC token.

DarkaMaul avatar Jul 10 '24 16:07 DarkaMaul