= 6.0.0
Closed, ResolvedPublic
Actions

Assigned To

Authored By

	Reedy
	Sep 30 2022, 1:43 AM

Description

https://github.com/firebase/php-jwt/releases/tag/v6.0.0

TokenManager passes a string as the second argument to JWT::decode...

Details

	Subject	Repo	Branch	Lines +/-
	Upgrade firebase/php-jwt to version 6.4.0	mediawiki/extensions/CheckUser	master	+1 -1
	Prepare for upgrading firebase/php-jwt to version 6.4.0	mediawiki/extensions/CheckUser	master	+2 -2

Customize query in gerrit

Related Objects
Search...

		Status	Subtype	Assigned	Task
		Resolved	Security	Reedy	T335288 CVE-2021-46743: firebase/php-jwt Key/algorithm type confusion
		Resolved		Dreamy_Jazz	T318992 Update CheckUser for firebase/php-jwt >= 6.0.0

Event Timeline

Reedy created this task.Sep 30 2022, 1:43 AM

Restricted Application added a subscriber: Aklapper. · View Herald TranscriptSep 30 2022, 1:43 AM

Change 850297 had a related patch set uploaded (by Dreamy Jazz; author: Dreamy Jazz):

[mediawiki/extensions/CheckUser@master] Upgrade firebase/php-jwt to version 6.3.0

https://gerrit.wikimedia.org/r/850297

gerritbot added a project: Patch-For-Review.Oct 27 2022, 10:47 PM

Dreamy_Jazz claimed this task.Oct 27 2022, 10:47 PM

Dreamy_Jazz triaged this task as Medium priority.

Dreamy_Jazz moved this task from General / Unsorted to Patches for review on the CheckUser board.

Change 850297 abandoned by Dreamy Jazz:

[mediawiki/extensions/CheckUser@master] Upgrade firebase/php-jwt to version 6.3.0

Reason:

Obviously no desire to merge this quickly, so abandoning to focus on more important patches.

https://gerrit.wikimedia.org/r/850297

Dreamy_Jazz moved this task from Patches for review to General / Unsorted on the CheckUser board.Dec 15 2022, 10:33 PM

Maintenance_bot removed a project: Patch-For-Review.Dec 15 2022, 11:30 PM

Dreamy_Jazz removed Dreamy_Jazz as the assignee of this task.Dec 28 2022, 11:19 PM

Dreamy_Jazz subscribed.

Reedy added a parent task: T335288: CVE-2021-46743: firebase/php-jwt Key/algorithm type confusion.Apr 24 2023, 1:42 PM

Change 850297 restored by Reedy:

[mediawiki/extensions/CheckUser@master] Upgrade firebase/php-jwt to version 6.3.0

https://gerrit.wikimedia.org/r/850297

gerritbot added a project: Patch-For-Review.Apr 24 2023, 1:43 PM

Change 911340 had a related patch set uploaded (by Dreamy Jazz; author: Dreamy Jazz):

[mediawiki/extensions/CheckUser@master] Prepare for upgrading firebase/php-jwt to version 6.4.0

https://gerrit.wikimedia.org/r/911340

Change 911340 merged by jenkins-bot:

[mediawiki/extensions/CheckUser@master] Prepare for upgrading firebase/php-jwt to version 6.4.0

https://gerrit.wikimedia.org/r/911340

With thanks to Reedy and Jdforrester, it looks like this can be closed (change upgrading CheckUser is in gate-and-submit).

Change 850297 merged by jenkins-bot:

[mediawiki/extensions/CheckUser@master] Upgrade firebase/php-jwt to version 6.4.0

https://gerrit.wikimedia.org/r/850297

Dreamy_Jazz removed a project: Patch-For-Review.Apr 25 2023, 2:38 PM

ReleaseTaggerBot added a project: MW-1.41-notes (1.41.0-wmf.9; 2023-05-15).May 15 2023, 8:01 PM

Update CheckUser for firebase/php-jwt >= 6.0.0Closed, ResolvedPublicActions

Description

Details

Related ObjectsSearch...

Event Timeline

Update CheckUser for firebase/php-jwt >= 6.0.0
Closed, ResolvedPublic
Actions

Related Objects
Search...