Skip to content
This repository has been archived by the owner on Apr 5, 2024. It is now read-only.

Override nimbus-jose-jwt version to avoid CVE-2023-52428 #540

Merged
merged 1 commit into from
Feb 27, 2024

Conversation

usmansaleem
Copy link
Contributor

@usmansaleem usmansaleem commented Feb 27, 2024

PR Description

Override nimbus-jose-jwt version to avoid CVE-2023-52428

./gradlew --no-daemon -Dorg.gradle.parallel=false dependencyCheckAggregate
To honour the JVM settings for this build a single-use Daemon process will be forked. See https://docs.gradle.org/7.6/userguide/gradle_daemon.html#sec:disabling_the_daemon.
Daemon will be stopped at the end of the build

> Task :dependencyCheckAggregate
Verifying dependencies for project ethsigner
Checking for updates and analyzing dependencies for vulnerabilities

<SNIP>
BUILD SUCCESSFUL in 40s

Fixed Issue(s)

Documentation

  • I thought about documentation and added the doc-change-required label to this PR if updates are required.

Changelog

  • I thought about adding a changelog entry, and added one if I deemed necessary.

@usmansaleem usmansaleem enabled auto-merge (squash) February 27, 2024 00:26
@usmansaleem usmansaleem merged commit 7c0f3ae into Consensys:master Feb 27, 2024
8 checks passed
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants