chore(deps): bump jsonwebtoken from 9.3.1 to 10.4.0 by dependabot[bot] · Pull Request #508 · hellas-ai/gate

dependabot · 2026-05-12T11:33:04Z

Bumps jsonwebtoken from 9.3.1 to 10.4.0.

Changelog

Sourced from jsonwebtoken's changelog.

10.4.0 (2026-05-11)

Fix incorrect encoding for Ed25519 JWK thumbprints

Make Algorithm.family public and add Validation.new_for_family

EncodingKey and DecodingKey are now partially zeroized on drop (the intermediate PemEncodedKey isn't so far)

10.3.0 (2026-01-27)

Export everything needed to define your own CryptoProvider

Fix type confusion with exp/nbf when not required

10.2.0 (2025-11-06)

Remove Clone bound from decode functions

10.1.0 (2025-10-18)

add dangerous::insecure_decode

Implement TryFrom &Jwk for DecodingKey

10.0.0 (2025-09-29)

BREAKING: now using traits for crypto backends, you have to choose between aws_lc_rs and rust_crypto

Add Clone bound to decode

Support decoding byte slices

Support JWS

Commits

69a8fbf v10.4.0
d18e40f Update changelog for 10.4.0 (#507)
ddd2389 security: zeroize encoding and decoding keys (#483)
991e89a Fix more clippy complaints (#503)
75f2113 algorithms: expose AlgorithmFamily (#466)
0c5931a Fixup typo in the DecodingKey::from_ec_der method (#501)
8a80349 Small fixes (#498)
9934c7f Fix formatting in Ed25519 key serialization (#485)
abbc307 Fix type confusion
e99740d fix: bump minimal version requirements (#481)
Additional commits viewable in compare view

Bumps [jsonwebtoken](https://github.com/Keats/jsonwebtoken) from 9.3.1 to 10.4.0. - [Changelog](https://github.com/Keats/jsonwebtoken/blob/master/CHANGELOG.md) - [Commits](Keats/jsonwebtoken@v9.3.1...v10.4.0) --- updated-dependencies: - dependency-name: jsonwebtoken dependency-version: 10.4.0 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot Bot added dependencies Pull requests that update a dependency file rust Pull requests that update rust code labels May 12, 2026

dependabot Bot mentioned this pull request May 12, 2026

chore(deps): bump jsonwebtoken from 9.3.1 to 10.3.0 #339

Closed

dependabot Bot force-pushed the dependabot/cargo/jsonwebtoken-10.4.0 branch from 0bcc3c7 to 789fd63 Compare May 12, 2026 11:37

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): bump jsonwebtoken from 9.3.1 to 10.4.0#508

chore(deps): bump jsonwebtoken from 9.3.1 to 10.4.0#508
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/cargo/jsonwebtoken-10.4.0

dependabot Bot commented on behalf of github May 12, 2026 •

edited

Loading

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Conversation

dependabot Bot commented on behalf of github May 12, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

10.4.0 (2026-05-11)

10.3.0 (2026-01-27)

10.2.0 (2025-11-06)

10.1.0 (2025-10-18)

10.0.0 (2025-09-29)

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

dependabot Bot commented on behalf of github May 12, 2026 •

edited

Loading