hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-18 01:33:15 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
e58b90ef1c670308976b6e901b202a4c4ab665a3
codeql/javascript/change-notes/2020-11-09-jwt.md
Erik Krogh Kristensen 74d933d475 move change note
2020-11-11 21:09:08 +01:00

274 B
Raw Blame History

lgtm,codescanning

  • The security queries now track taint through JWT decoding, and warns about hard-coded JWT signing keys. Affected packages are jsonwebtoken and jwt-decode