Skip to content
This repository has been archived by the owner on Apr 5, 2024. It is now read-only.

Override nimbus-jose-jwt version to avoid CVE-2023-52428 #540

Merged
merged 1 commit into from
Feb 27, 2024
Merged

Override nimbus-jose-jwt version to avoid CVE-2023-52428 #540

merged 1 commit into from
Feb 27, 2024

Conversation

usmansaleem
Copy link
Contributor

@usmansaleem usmansaleem commented Feb 27, 2024
edited
Loading

PR Description

Override nimbus-jose-jwt version to avoid CVE-2023-52428

./gradlew --no-daemon -Dorg.gradle.parallel=false dependencyCheckAggregate
To honour the JVM settings for this build a single-use Daemon process will be forked. See https://docs.gradle.org/7.6/userguide/gradle_daemon.html#sec:disabling_the_daemon.
Daemon will be stopped at the end of the build

> Task :dependencyCheckAggregate
Verifying dependencies for project ethsigner
Checking for updates and analyzing dependencies for vulnerabilities

<SNIP>
BUILD SUCCESSFUL in 40s

Fixed Issue(s)

Documentation

  • I thought about documentation and added the doc-change-required label to this PR if updates are required.

Changelog

  • I thought about adding a changelog entry, and added one if I deemed necessary.

@usmansaleem usmansaleem enabled auto-merge (squash) February 27, 2024 00:26
@usmansaleem usmansaleem merged commit 7c0f3ae into Consensys:master Feb 27, 2024
8 checks passed
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@macfarla macfarla macfarla approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@usmansaleem @macfarla