hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-01-10 05:00:29 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
805352945ede85170b1dc14fcd72bf45c41196e3
codeql/javascript/change-notes/2020-11-09-jwt.md
Erik Krogh Kristensen 74d933d475 move change note
2020-11-11 21:09:08 +01:00

274 B
Raw Blame History

lgtm,codescanning

  • The security queries now track taint through JWT decoding, and warns about hard-coded JWT signing keys. Affected packages are jsonwebtoken and jwt-decode