hapi-auth-jwt requires an old version of jsonwebtoken (5.x), which depends on ms which has a ReDoS vulnerability. Please update jsonwebtoken to use at least 7.4.1 which has fixed this issue.
Thanks!
https://snyk.io/test/github/screwdriver-cd/screwdriver.git
hapi-auth-jwt requires an old version of
jsonwebtoken(5.x), which depends onmswhich has a ReDoS vulnerability. Please updatejsonwebtokento use at least 7.4.1 which has fixed this issue.Thanks!
https://snyk.io/test/github/screwdriver-cd/screwdriver.git