unshackle/uv.lock at e323f6f3b3e34478c54150426a07a5459b53844b

mirror of https://github.com/unshackle-dl/unshackle.git synced 2026-05-17 06:09:29 +00:00

Files

Andy 7358619a40 fix(deps): bump PyJWT minimum to 2.12.0 for CVE-2026-32597

PyJWT <= 2.11.0 accepts unknown `crit` header extensions in violation of RFC 7515 §4.1.11. Bump lower bound to 2.12.0 which includes the fix.

2026-03-25 15:16:21 -06:00

View Raw