You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
In the current version of Passport, Cryptiles version 0.2.2 is used. This version of Cryptiles contains a security issue mentioned here: hapijs/cryptiles#34
In my project we use the tool "Black Duck Scan" which flaggs this as a critical issue.
In the current version of Passport, Cryptiles version 0.2.2 is used. This version of Cryptiles contains a security issue mentioned here:
hapijs/cryptiles#34
In my project we use the tool "Black Duck Scan" which flaggs this as a critical issue.
This issue is fixed in version 4.1.2 of Cryptiles according to this page:
https://nvd.nist.gov/vuln/detail/CVE-2018-1000620
The text was updated successfully, but these errors were encountered: