chore(deps): bump github.com/golang-jwt/jwt/v4 from 4.0.0 to 4.1.0 #59

Closed
dependabot[bot] wants to merge 1 commits from dependabot/go_modules/github.com/golang-jwt/jwt/v4-4.1.0 into master
dependabot[bot] commented 2021-09-28 09:11:24 +03:00 (Migrated from github.com)

Bumps github.com/golang-jwt/jwt/v4 from 4.0.0 to 4.1.0.

Release notes

Sourced from github.com/golang-jwt/jwt/v4's releases.

v4.1.0

Changelog

Sourced from github.com/golang-jwt/jwt/v4's changelog.

jwt-go Version History

Commits
  • fd8cd69 Adjusted parser_test.go to include RSA and ECDSA tokens (#106)
  • 02bc1ac When exp indicates the present, make it invalid. (#86)
  • d2c5d5a Add EdDSA to "Signing methods and Key types" in README.md (#103)
  • 205b3dc fix link (#102)
  • 93130d3 Create codeql-analysis.yml (#101)
  • 3f50a78 Harmonising capitalisation of "token" in error strings (#97)
  • 2bd8ee7 Accept crypto.Signer that contains a ed25519.PublicKey in ed25519 (#95)
  • 80625fb Backwards-compatible implementation of RFC7519's registered claim's structure...
  • c9ab96b jwt: Fix Verify methods documentation (#83)
  • eac9e9e Format code with "go fmt" (#53)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Bumps [github.com/golang-jwt/jwt/v4](https://github.com/golang-jwt/jwt) from 4.0.0 to 4.1.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/golang-jwt/jwt/releases">github.com/golang-jwt/jwt/v4's releases</a>.</em></p> <blockquote> <h2>v4.1.0</h2> <ul> <li>Adds support for go1.17 (<a href="https://github-redirect.dependabot.com/golang-jwt/jwt/issues/89">#89</a>).</li> <li>Adds RFC7519-compliant <code>RegisteredClaims</code> struct (<a href="https://github-redirect.dependabot.com/golang-jwt/jwt/issues/15">#15</a>). Use this instead of <code>StandardClaims</code> (deprecated but not removed).</li> <li>Adds generic <code>crypto.Signer</code> for <code>ed25519.PublicKey</code> (<a href="https://github-redirect.dependabot.com/golang-jwt/jwt/issues/95">#95</a>).</li> <li>Adds regular code scanning (<a href="https://github-redirect.dependabot.com/golang-jwt/jwt/issues/101">#101</a>).</li> <li>Corrects &quot;exp&quot; logic to conform to <a href="https://datatracker.ietf.org/doc/html/rfc7519#section-4.1.4">https://datatracker.ietf.org/doc/html/rfc7519#section-4.1.4</a> (<a href="https://github-redirect.dependabot.com/golang-jwt/jwt/issues/86">#86</a>).</li> <li>Adds additional parsing tests (<a href="https://github-redirect.dependabot.com/golang-jwt/jwt/issues/106">#106</a>).</li> <li>Changed error string (<a href="https://github-redirect.dependabot.com/golang-jwt/jwt/issues/97">#97</a>).</li> <li>Various Code fixes and cleanup (<a href="https://github-redirect.dependabot.com/golang-jwt/jwt/issues/53">#53</a>, <a href="https://github-redirect.dependabot.com/golang-jwt/jwt/issues/83">#83</a>, <a href="https://github-redirect.dependabot.com/golang-jwt/jwt/issues/102">#102</a>, <a href="https://github-redirect.dependabot.com/golang-jwt/jwt/issues/103">#103</a>).</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/golang-jwt/jwt/blob/main/VERSION_HISTORY.md">github.com/golang-jwt/jwt/v4's changelog</a>.</em></p> <blockquote> <h2><code>jwt-go</code> Version History</h2> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/golang-jwt/jwt/commit/fd8cd69d8eb674b14c031ef57fccf0cc7bbe5978"><code>fd8cd69</code></a> Adjusted <code>parser_test.go</code> to include RSA and ECDSA tokens (<a href="https://github-redirect.dependabot.com/golang-jwt/jwt/issues/106">#106</a>)</li> <li><a href="https://github.com/golang-jwt/jwt/commit/02bc1ac5067c1cb18c8e111cf9f80b6ed4616e2d"><code>02bc1ac</code></a> When exp indicates the present, make it invalid. (<a href="https://github-redirect.dependabot.com/golang-jwt/jwt/issues/86">#86</a>)</li> <li><a href="https://github.com/golang-jwt/jwt/commit/d2c5d5ab01a1ff0d978a0d5a73b2f6618d107c18"><code>d2c5d5a</code></a> Add EdDSA to &quot;Signing methods and Key types&quot; in README.md (<a href="https://github-redirect.dependabot.com/golang-jwt/jwt/issues/103">#103</a>)</li> <li><a href="https://github.com/golang-jwt/jwt/commit/205b3dc4bbaa1152602c7cfbfb7e18d8c357ef5d"><code>205b3dc</code></a> fix link (<a href="https://github-redirect.dependabot.com/golang-jwt/jwt/issues/102">#102</a>)</li> <li><a href="https://github.com/golang-jwt/jwt/commit/93130d3c71fe0e23501830a0926c612a7940d853"><code>93130d3</code></a> Create codeql-analysis.yml (<a href="https://github-redirect.dependabot.com/golang-jwt/jwt/issues/101">#101</a>)</li> <li><a href="https://github.com/golang-jwt/jwt/commit/3f50a786ff28f918ba8e7fb9183390b11483e755"><code>3f50a78</code></a> Harmonising capitalisation of &quot;token&quot; in error strings (<a href="https://github-redirect.dependabot.com/golang-jwt/jwt/issues/97">#97</a>)</li> <li><a href="https://github.com/golang-jwt/jwt/commit/2bd8ee77fc3a6b7116c5b5121cd7d07324423a85"><code>2bd8ee7</code></a> Accept <code>crypto.Signer</code> that contains a <code>ed25519.PublicKey</code> in ed25519 (<a href="https://github-redirect.dependabot.com/golang-jwt/jwt/issues/95">#95</a>)</li> <li><a href="https://github.com/golang-jwt/jwt/commit/80625fb516604a88dd525c2354bd6f7d652ea165"><code>80625fb</code></a> Backwards-compatible implementation of RFC7519's registered claim's structure...</li> <li><a href="https://github.com/golang-jwt/jwt/commit/c9ab96ba53bcd70914eb1a6146d6205036e2519b"><code>c9ab96b</code></a> jwt: Fix Verify methods documentation (<a href="https://github-redirect.dependabot.com/golang-jwt/jwt/issues/83">#83</a>)</li> <li><a href="https://github.com/golang-jwt/jwt/commit/eac9e9edf202889fb4f52db724f0e631a2cf8123"><code>eac9e9e</code></a> Format code with &quot;go fmt&quot; (<a href="https://github-redirect.dependabot.com/golang-jwt/jwt/issues/53">#53</a>)</li> <li>Additional commits viewable in <a href="https://github.com/golang-jwt/jwt/compare/v4.0.0...v4.1.0">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/golang-jwt/jwt/v4&package-manager=go_modules&previous-version=4.0.0&new-version=4.1.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details>
dependabot[bot] commented 2021-09-28 23:44:27 +03:00 (Migrated from github.com)

Looks like github.com/golang-jwt/jwt/v4 is up-to-date now, so this is no longer needed.

Looks like github.com/golang-jwt/jwt/v4 is up-to-date now, so this is no longer needed.

Pull request closed

Sign in to join this conversation.
No description provided.