From d60070358e0b01935117bf6c31c52a54c62350c4 Mon Sep 17 00:00:00 2001
From: Ben Boeckel <ben.boeckel@kitware.com>
Date: Fri, 7 Mar 2025 10:51:48 +0100
Subject: [PATCH] github: bump to `jsonwebtoken` 9.x

This depends on `ring` 0.17 which fixes an AES overflow condition.

Avoids: https://rustsec.org/advisories/RUSTSEC-2025-0009
---
 ghostflow-github/Cargo.toml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/ghostflow-github/Cargo.toml b/ghostflow-github/Cargo.toml
index 1c09af2a..63fd17d1 100644
--- a/ghostflow-github/Cargo.toml
+++ b/ghostflow-github/Cargo.toml
@@ -17,7 +17,7 @@ edition.workspace = true
 chrono = { version = "~0.4.16", default-features = false, features = ["serde"] }
 graphql_client = "~0.14"
 itertools = "~0.10"
-jsonwebtoken = "^8.0"
+jsonwebtoken = "^9.0"
 log = "~0.4.4"
 reqwest = { version = "~0.11", features = ["blocking", "json"] }
 serde_json = "^1.0"
-- 
GitLab