Skip to content
This repository has been archived by the owner on Jan 16, 2024. It is now read-only.

Support OmniAuth 2.0.0 #4

Open
pusewicz opened this issue Jan 15, 2021 · 0 comments · May be fixed by #6
Open

Support OmniAuth 2.0.0 #4

pusewicz opened this issue Jan 15, 2021 · 0 comments · May be fixed by #6

Comments

@pusewicz
Copy link

It is currently not possible to upgrade OmniAuth to version 2.0 that fixes the CVE-2015-9284 because omniauth-asana locks the requirement to version 1.0.
@igor-alexandrov igor-alexandrov linked a pull request Nov 29, 2021 that will close this issue
Open
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Updated to support omniauth-2.0. igor-alexandrov/omniauth-asana
1 participant
@pusewicz