GitHub/ergo
3
0
Fork 0
mirror of https://github.com/ergochat/ergo.git synced 2025-04-25 17:27:56 +02:00
Code Issues Projects Releases Wiki Activity
ergo/vendor/github.com/golang-jwt/jwt/v5/SECURITY.md
dependabot[bot] a46732f6ab
Bump github.com/golang-jwt/jwt/v5 from 5.2.1 to 5.2.2 
Bumps [github.com/golang-jwt/jwt/v5](https://github.com/golang-jwt/jwt) from 5.2.1 to 5.2.2.
- [Release notes](https://github.com/golang-jwt/jwt/releases)
- [Changelog](https://github.com/golang-jwt/jwt/blob/main/VERSION_HISTORY.md)
- [Commits](https://github.com/golang-jwt/jwt/compare/v5.2.1...v5.2.2)

---
updated-dependencies:
- dependency-name: github.com/golang-jwt/jwt/v5
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
2025-03-21 22:14:08 +00:00

904 B
Raw Blame History

Security Policy

Supported Versions

As of November 2024 (and until this document is updated), the latest version v5 is supported. In critical cases, we might supply back-ported patches for v4.

Reporting a Vulnerability

If you think you found a vulnerability, and even if you are not sure, please report it a GitHub Security Advisory. Please try be explicit, describe steps to reproduce the security issue with code example(s).

You will receive a response within a timely manner. If the issue is confirmed, we will do our best to release a patch as soon as possible given the complexity of the problem.

Public Discussions

Please avoid publicly discussing a potential security vulnerability.

Lets take this offline and find a solution first, this limits the potential impact as much as possible.

We appreciate your help!