Skip to content

4.0.2 Validate Algorithm Not None
Compare
Choose a tag to compare
@RobDWaller RobDWaller released this 07 Apr 09:53
· 85 commits to master since this release
4.0.2
a292f6e
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.

This security patch adds a check to the Tokens::validate() method to ensure the algorithm provided is not set to none as this may result in token misuse.

Additional Work:

  • Updated README documentation.
Assets 2
Loading