ignore jwt vulnerability, not affected (#205)

elasticio · Dec 28, 2022 · 0621814 · 0621814
1 parent 9b15c18
commit 0621814
Show file tree

Hide file tree

Showing 2 changed files with 49 additions and 0 deletions.
diff --git a/.nsprc b/.nsprc
@@ -10,5 +10,9 @@
     "GHSA-hrpp-h998-j3pp": {
         "active": true,
         "notes": "There is no query-string user input in sailor"
+    },
+    "GHSA-27h2-hvpr-p74q": {
+        "active": true,
+        "notes": "The vulnerability is in maester-client. Maester-client doesn't use jwt.verify function."
     }
 }
diff --git a/package-lock.json b/package-lock.json