Skip to content

Update dependency PyJWT to v2 #65

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
mend-for-github-com wants to merge 1 commit into
base: main
Choose a base branch
from

Update dependency PyJWT to v2

7fd421d
Select commit
Loading
Failed to load commit list.
Open

Update dependency PyJWT to v2 #65

Update dependency PyJWT to v2
7fd421d
Select commit
Loading
Failed to load commit list.
Mend for GitHub.com / WhiteSource Security Check failed Mar 18, 2026 in 1m 50s

Security Report

You have successfully remediated 3 vulnerabilities, but introduced 2 new vulnerabilities in this branch.

❌ New vulnerabilities:

Vulnerability Severity CVSS Score Vulnerable Library Direct Library Suggested Fix Issue
CVE-2019-11324

Path to dependency file: /requirements.txt

Path to vulnerable library: /tmp/ws-ua_20260318064223_UTKUNO/python_COGWAQ/20260318064224/12/urllib3-1.21.1-py2.py3-none-any.whl

Dependency Hierarchy:

-> ❌ urllib3-1.21.1-py2.py3-none-any.whl (Vulnerable Library)

High 7.5 Direct urllib3-1.21.1-py2.py3-none-any.whl urllib3-1.21.1-py2.py3-none-any.whl urllib3 - 1.24.2 None
CVE-2025-71176

Path to dependency file: /requirements.txt

Path to vulnerable library: /tmp/ws-ua_20260318064223_UTKUNO/python_COGWAQ/20260318064224/17/pytest-8.4.2-py3-none-any.whl

Dependency Hierarchy:

-> ❌ pytest-8.4.2-py3-none-any.whl (Vulnerable Library)

Medium 6.8 Direct pytest-8.4.2-py3-none-any.whl pytest-8.4.2-py3-none-any.whl None

✔️ Remediated vulnerabilities:

Vulnerability Vulnerable Library
CVE-2026-32597 PyJWT-1.5.2-py2.py3-none-any.whl
CVE-2022-29217 PyJWT-1.5.2-py2.py3-none-any.whl
CVE-2024-5569 zipp-3.9.0-py3-none-any.whl

Base branch total remaining vulnerabilities: 33
Base branch commit: null


Total libraries scanned: 41

Scan token: 2a1531ab1faa4bb3a9fcb6c3e135bbf0

View more details on Mend for GitHub.com