This is an automated email from the ASF dual-hosted git repository.
tison pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/opendal-reqsign.git
The following commit(s) were added to refs/heads/main by this push:
new efbcf35 build(deps): upgrade jsonwebtoken (#689)
efbcf35 is described below
commit efbcf356d390fbd9d9f7ad7c5d86636347353dbf
Author: Dimitri John Ledkov <[email protected]>
AuthorDate: Wed Feb 25 15:16:53 2026 +0000
build(deps): upgrade jsonwebtoken (#689)
Move jsonwebtoken to a workspace dependency.
Upgrade to 10 series, to pick up CVE fix in 10.3.0. Use aws-lc backend, as
aws-lc is already an existing transitive dependency.
---
Cargo.toml | 1 +
services/azure-storage/Cargo.toml | 2 +-
services/google/Cargo.toml | 2 +-
3 files changed, 3 insertions(+), 2 deletions(-)
diff --git a/Cargo.toml b/Cargo.toml
index 52e578f..59ea37e 100644
--- a/Cargo.toml
+++ b/Cargo.toml
@@ -52,6 +52,7 @@ hex = "0.4"
hmac = "0.12"
http = "1"
jiff = "0.2"
+jsonwebtoken = { version = "10", features = ["aws_lc_rs"] }
log = "0.4"
percent-encoding = "2"
pretty_assertions = "1.3"
diff --git a/services/azure-storage/Cargo.toml
b/services/azure-storage/Cargo.toml
index 4b8ee12..706d27f 100644
--- a/services/azure-storage/Cargo.toml
+++ b/services/azure-storage/Cargo.toml
@@ -41,7 +41,7 @@ serde_json = { workspace = true }
sha1 = { workspace = true }
[target.'cfg(not(target_arch = "wasm32"))'.dependencies]
-jsonwebtoken = "9.2"
+jsonwebtoken = { workspace = true }
pem = "3.0"
rsa = { workspace = true }
diff --git a/services/google/Cargo.toml b/services/google/Cargo.toml
index 2fbbb9c..c858ae0 100644
--- a/services/google/Cargo.toml
+++ b/services/google/Cargo.toml
@@ -30,7 +30,7 @@ rust-version.workspace = true
async-trait = { workspace = true }
form_urlencoded = { workspace = true }
http = { workspace = true }
-jsonwebtoken = "9.2"
+jsonwebtoken = { workspace = true }
log = { workspace = true }
percent-encoding = { workspace = true }
rand = { workspace = true }
