fix(deps): update module github.com/micahparks/jwkset to v0.5.17 #2415
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
![trap-renovate[bot]](https://avatars.githubusercontent.com/in/355677?s=60&v=4){kind=small}
trap-renovate
bot
added
renovate/gomod
![github-actions[bot]](https://avatars.githubusercontent.com/in/15368?s=60&v=4){kind=small}
|
@dependabot rebase |
|
ちがうそうじゃない |
trap-renovate
bot
force-pushed
the
renovate/git.luolix.top-micahparks-jwkset-0.x
branch
from
226bfd3 to
e886f2e
Compare
trap-renovate
bot
force-pushed
the
renovate/git.luolix.top-micahparks-jwkset-0.x
branch
from
e886f2e to
e1aa524
Compare
motoki317
approved these changes
May 14, 2024
trap-renovate
bot
deleted the
renovate/git.luolix.top-micahparks-jwkset-0.x
branch
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
v0.3.1->v0.5.17Release Notes
MicahParks/jwkset (github.com/MicahParks/jwkset)
v0.5.17Compare Source
v0.5.16Compare Source
v0.5.15: Less strict validationCompare Source
The purpose of this release is to use less strict validation for JWK. This will allow users to work with non-RFC compliant JWK Sets for small padding mistakes.
Two padding related reasons for this are:
For padding specifically, this project is only comparing integers after they are parsed from Base64 raw URL encoding by default. To turn on strict validation, there will be a new field on jwkset.ValidateOptions named StrictPadding.
An example for
1would be a bug in this project were mandatory leading padding was absent: https://github.com/MicahParks/jwkset/issues/18An example for
2would be a Firebase service that was reported to be incompatible with this project: https://github.com/MicahParks/jwkset/issues/23Relevant issues:
Relevant pull requests:
v0.5.14Compare Source
v0.5.13Compare Source
The purpose of this release is to correctly pad EC JWK parameters with leading zeros where required by RFC 7518.
For
"x"and"y":For
"d":This is to bring the project into RFC compliance with RFC 7518 Section 6.2.1.2, 6.2.1.3, and 6.2.2.1.
Relevant issues:
What's Changed
Full Changelog: MicahParks/jwkset@v0.5.12...v0.5.13
v0.5.12Compare Source
v0.5.11Compare Source
v0.5.10Compare Source
v0.5.9: jwksetinfer tool multi-PEM bugCompare Source
A bug in the
cmd/jwksetinfertool caused multiple PEM file inputs to only output the final PEM key as a JWK Set. This is because the metadata wasn't being passed in and the all key IDs were the same empty string.Thank you @aarnaud for discovering the bug and fixing it!
Relevant pull requests:
v0.5.8Compare Source
v0.5.7Compare Source
v0.5.6: Refresh on unknown key IDCompare Source
The purpose of this release is to change the default HTTP client to add a feature that refreshes remote JWK Set resources when trying to read a key ID kid that has not been found in the local cache.
This requires rate limiting and the
pkg.go.dev/golang.org/x/time/ratehas been added as a dependency for that.Related pull requests:
v0.5.5: Consistent optional behavior for X.509 certificate thumbprintsCompare Source
This release fixes a bug where X.509 certificate thumbprints were not optional when a
JWKMarshalwithout these fields was used inNewJWKFromMarshal.Thank you, @joshkaplinsky, for reporting this bug!
Relevant pull requests:
Relevant issues:
v0.5.4Compare Source
v0.5.3Compare Source
v0.5.2Compare Source
v0.5.1Compare Source
v0.5.0: Add HTTP ClientCompare Source
This release contains a Golang HTTP client for JWK Sets.
v0.4.0: Add website and X.509 supportCompare Source
This project now supports all standardized JSON Web Key parameters, including X.509 assets that I could find. Please open an issue if you find some that are not supported.
Additionally, I made a website for this project. The website is mostly for generating and inspecting JSON Web Keys. Check it out at https://jwkset.com
Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Enabled.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR has been generated by Renovate Bot.