revodoge
Results
2
issues of
revodoge
Algorithm became a required param for verifying signature in https://github.com/jwt/ruby-jwt/pull/184 to address https://auth0.com/blog/critical-vulnerabilities-in-json-web-token-libraries/ The PR mentioned: > This doesn't seem to be exploitable right now because the current implementation of...
documentation
security
`Cipher#iv_len` is not returning the proper value for an ECB mode AES cipher. MRI: ``` 2.5.1 :002 > OpenSSL::Cipher.new("AES-128-ECB").iv_len => 0 ``` JRuby: ``` jruby-9.1.15.0 :002 > OpenSSL::Cipher.new("AES-128-ECB").iv_len => 16...