New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update dependency com.auth0:java-jwt to v4 #96

Open

renovate wants to merge 1 commit into master from renovate/com.auth0-java-jwt-4.x

renovate bot commented Jul 6, 2023 •

edited

Loading

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
com.auth0:java-jwt	`3.10.0` -> `4.4.0`

Release Notes

auth0/java-jwt (com.auth0:java-jwt)

`v4.4.0`

Changed

Add support for passing json values for header and payload #643 (andrewrigas)
Preserve insertion order for claims #656 (snago)
Update Jackson to 2.14.2 #657 (jimmyjames)

`v4.3.0`

Changed

Improve JWT parse/decode performance #620 (noetro)

Fixed

Fix for exp claim considered valid if equal to now #652 (jimmyjames)
Code cleanup #642 (CodeDead)

`v4.2.2`

This patch release does not contain any functional changes, but is being released using an updated signing key for verification as part of our commitment to best security practices.
Please review the README note for additional details.

`v4.2.1`

Security

Use latest ship orb #634 (jimmyjames)
Bump com.fasterxml.jackson.core:jackson-databind to 2.13.4.2 #630 (evansims)

`v4.2.0`

Changed

Re-enable japicmp API diff checking #619 (jimmyjames)
Update .shiprc to only update lib version in build.gradle #625 (jimmyjames)
Optimise TokenUtils parsing #611 (noetro)
Update Circle Ship Orb configuration #616 (frederikprijck)

Fixed

Update Claim#asString documentation #615 (jimmyjames)

`v4.1.0`

⚠️ BREAKING CHANGES

Make JWT constants final values #604 (poovamraj)

Added

Add integration with our Shipping orb #612 (frederikprijck)
Add Ship CLI support #609 (jimmyjames)
Provide straightforward example for JWKS #600 (poovamraj)

Changed

Update to gradle 6.9.2 #608 (jimmyjames)
Update OSS plugin to latest #607 (jimmyjames)
[SDK-3466] Upgrade Codecov #595 (evansims)
Update README.md #590 (poovamraj)

Fixed

Check for null token before splitting #606 (jimmyjames)
[SDK-3816] Update docs for verification thread-safety #605 (jimmyjames)

`v4.0.0`

This is a major release and contains breaking changes!

Check the Migration Guide to understand the changes required to migrate your application to v4.

Main features

Predicates based claim verification
Support for Instant API and Lambda functions
Improved Exceptions API
Consistent null handling

See the changelog entries for additional details.

`v3.19.4`

This patch release does not contain any functional changes, but is being released using an updated signing key for verification as part of our commitment to best security practices.
Please review the README note for additional details.

`v3.19.3`

Security

Update com.fasterxml.jackson.core:jackson-databind to 2.13.4.2 #631 (jimmyjames)

`v3.19.2`

Security

[SDK-3311] Added protection against CVE-2022-21449 #579 (poovamraj)

`v3.19.1`

Security

Security: Bump jackson-databind to 2.13.2.2 #566 (evansims)

`v3.19.0`

Deprecated

Deprecate ES256K Algorithm #543 (poovamraj)

Fixed

fix typos in JWTVerifier#verify docstring #526 (OdunlamiZO)

Security

Bump jackson-databind dependency to 2.13.2 #542 (evansims)

`v3.18.3`

Security

Update jackson dependency #523 (poovamraj)

`v3.18.2`

Fixed

[SDK-2758] Restore withIssuer #513 (jimmyjames)
[SDK-2751] Serialize audience claim when a List #512 (jimmyjames)

`v3.18.1`

Fixed

Fix min JDK version regression #504 (lbalmaceda)

`v3.18.0`

Changed

Update OSS release plugin version #501 (lbalmaceda)

`v3.17.0`

Added

Add module system support #484 (XakepSDK)

`v3.16.0`

Changed

Improve Javadoc generation #496 (Marcono1234)
Add package-info.java for internal impl package #495 (Marcono1234)

`v3.15.0`

Changed

Remove jcenter #482 (jimmyjames)
Move form commons-codec Base64 to j.u.Base64 #478 (XakepSDK)

`v3.14.0`

Added

Add withPayload to JWTCreator.Builder #475 (jimmyjames)

`v3.13.0`

Added

Add ability to verify audience contains at least one of those expected #472 (jimmyjames)
Add toString to Claim objects [SDK-2225] #469 (jimmyjames)

`v3.12.1`

Changed

Update jackson-databind to 2.11.0 #464 (darveshsingh)

`v3.12.0`

Changed

Thread-safe classes should be Shared statically #462 (LeeHainie)

Security

Update jackson-databind to 2.10.5.1 (fixes CVE-2020-25649) #463 (overheadhunter)

Breaking changes

Target Java 8 #455 (lbalmaceda)

`v3.11.0`

Added

Add ability to verify claim presence #442 (jimmyjames)
Add Support for secp256k1 algorithms (AKA ES256K) #439 (jimmyjames)

Fixed

Fix and document thread-safety #427 (lbalmaceda)
Wrap IllegalArgumentException into JWTDecodeException #426 (lbalmaceda)

`v3.10.3`

Fixed

Fixed an NPE on null map and list claims #417 (Vorotyntsev)

`v3.10.2`

Fixed

JavaDoc fix #413 (jimmyjames)
Check varargs null values in JWTVerifier #412 (jimmyjames)

`v3.10.1`

Changed

Update Jackson and Commons Codec dependencies #407 (jimmyjames)

Security

Update jackson-databind to 2.10.2 #399 (gexclaude)

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

bjorncs force-pushed the master branch from 070eae9 to 6ebc257 Compare

July 6, 2023 15:50


          Update dependency com.auth0:java-jwt to v4

7792e43

renovate bot force-pushed the renovate/com.auth0-java-jwt-4.x branch from 0105b33 to 7792e43 Compare

July 6, 2023 16:10

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet