Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[ES-1992] OAuth Details API is initiating the transaction despite a mismatch between the aud claim in the provided ID token and the clientId #1099

Merged
merged 2 commits into from
Jan 15, 2025
Merged

[ES-1992] OAuth Details API is initiating the transaction despite a mismatch between the aud claim in the provided ID token and the clientId #1099

merged 2 commits into from
Jan 15, 2025

Conversation

Md-Humair-KK
Copy link

OAuth Details API is initiating the transaction despite a mismatch between the aud claim in the provided ID token and the clientId (#1049)

@Md-Humair-KK
OAuth Details API is initiating the transaction despite a mismatch be…
f66a564 
…tween the aud claim in the provided ID token and the clientId (mosip#1049)

Signed-off-by: Md-Humair-KK <[email protected]>
@rajapandi1234 @snyk-bot @Md-Humair-KK
updating vulnerable library versions (mosip#1069)
78f0708 
* fix: esignet-service/pom.xml to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-5953331
- https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORKSECURITY-8309135
- https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORK-7945490
- https://snyk.io/vuln/SNYK-JAVA-ORGPOSTGRESQL-2401816
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-6435948
- https://snyk.io/vuln/SNYK-JAVA-ORGPOSTGRESQL-2390459
- https://snyk.io/vuln/SNYK-JAVA-ORGPOSTGRESQL-2970521
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-8383920
- https://snyk.io/vuln/SNYK-JAVA-ORGPOSTGRESQL-6252740
- https://snyk.io/vuln/SNYK-JAVA-ORGYAML-3152153
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-7430175
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-8073090
- https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORK-8230373
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-3326459
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-5862028
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-6092281
- https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORKBOOT-5441321
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-1728264
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-6435950
- https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORKBOOT-5564390
- https://snyk.io/vuln/SNYK-JAVA-ORGYAML-2806360
- https://snyk.io/vuln/SNYK-JAVA-ORGYAML-6056527
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-1048292
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-6183062
- https://snyk.io/vuln/SNYK-JAVA-ORGGLASSFISH-1297098
- https://snyk.io/vuln/SNYK-JAVA-CHQOSLOGBACK-6094942
- https://snyk.io/vuln/SNYK-JAVA-CHQOSLOGBACK-6094943
- https://snyk.io/vuln/SNYK-JAVA-CHQOSLOGBACK-6097492
- https://snyk.io/vuln/SNYK-JAVA-CHQOSLOGBACK-6097493
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-1080637
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-2414084
- https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORK-7687447
- https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORK-8384234
- https://snyk.io/vuln/SNYK-JAVA-ORGYAML-3016891
- https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORKSECURITY-8399269
- https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORKSECURITY-8399272
- https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORKSECURITY-8399278
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-1080638
- https://snyk.io/vuln/SNYK-JAVA-ORGYAML-3016888
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-1061939
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-1728266
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-3369687
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-5959654
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-5959972
- https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORKBOOT-6226862
- https://snyk.io/vuln/SNYK-JAVA-CHQOSLOGBACK-1726923
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-1728265
- https://snyk.io/vuln/SNYK-JAVA-ORGPOSTGRESQL-3146847
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-3035793
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-3097829
- https://snyk.io/vuln/SNYK-JAVA-ORGYAML-3016889
- https://snyk.io/vuln/SNYK-JAVA-ORGYAML-3113851
- https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORK-8230364
- https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORK-8230365
- https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORK-8230366
- https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORK-8230368

Signed-off-by: rajapandi.m <[email protected]>

* fix: oidc-ui/package.json & oidc-ui/package-lock.json to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-CRYPTOJS-6028119
- https://snyk.io/vuln/SNYK-JS-JOSE-6419224

Signed-off-by: rajapandi.m <[email protected]>

---------

Signed-off-by: rajapandi.m <[email protected]>
Co-authored-by: snyk-bot <[email protected]>
@ase-101 ase-101 merged commit 17f27b7 into mosip:release-1.5.1-temp Jan 15, 2025
12 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@ase-101 ase-101 ase-101 approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@Md-Humair-KK @ase-101 @rajapandi1234