Skip to content

chore(deps): bump okta-jwt-verifier from 0.4.0 to 0.5.0#1200

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/pip/okta-jwt-verifier-0.5.0
Open

chore(deps): bump okta-jwt-verifier from 0.4.0 to 0.5.0#1200
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/pip/okta-jwt-verifier-0.5.0

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github May 12, 2026
edited
Loading

Bumps okta-jwt-verifier from 0.4.0 to 0.5.0.

Release notes

Sourced from okta-jwt-verifier's releases.

v0.5.0

What's Changed

Full Changelog: okta/okta-jwt-verifier-python@v0.4.0...v0.5.0

Changelog

Sourced from okta-jwt-verifier's changelog.

v0.5.0

New features:

  • Add synchronous verify_sync() method to AccessTokenVerifier and IDTokenVerifier for non-async applications (e.g. Django, Flask)
  • Add sync verification methods to BaseJWTVerifier: verify_access_token_sync(), verify_id_token_sync(), get_jwk_sync(), get_jwks_sync()
  • Add sync HTTP support in RequestExecutor: fire_request_sync(), get_sync() using the requests library

Improvements:

  • Extract shared validation logic into _verify_token_common() to reduce code duplication across verify methods
  • Simplify _get_jwk_by_kid() with early return pattern
  • Fix get_jwks() silently swallowing exceptions on HTTP failure (now re-raises after cleanup)
  • Ensure clear_cache() clears both async and sync caches
  • Add try/finally to request throttling to guarantee counter cleanup on exceptions

Code quality:

  • Fix docstring typo: "acess""access"
  • Fix incorrect return type documentation: strdict for JWK methods
  • Add RFC 7519, 7515, 7517 references to docstrings
  • Remove empty parentheses on classes with no base class (PEP 8)

Backward compatible: All existing async APIs remain unchanged. No breaking changes.

Commits
  • 9881214 v0.5.0 Release Changes (#94)
  • 233bd45 Merge pull request #93 from okta/OKTA-1104727
  • 52b949e feat: add synchronous verify_sync() methods for non-async applications
  • See full diff in compare view

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels May 12, 2026
@dependabot
chore(deps): bump okta-jwt-verifier from 0.4.0 to 0.5.0
b5d2b80 
Bumps [okta-jwt-verifier](https://github.com/okta/okta-jwt-verifier-python) from 0.4.0 to 0.5.0.
- [Release notes](https://github.com/okta/okta-jwt-verifier-python/releases)
- [Changelog](https://github.com/okta/okta-jwt-verifier-python/blob/master/CHANGELOG.md)
- [Commits](okta/okta-jwt-verifier-python@v0.4.0...v0.5.0)

---
updated-dependencies:
- dependency-name: okta-jwt-verifier
  dependency-version: 0.5.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/pip/okta-jwt-verifier-0.5.0 branch from d536c71 to b5d2b80 Compare May 13, 2026 13:46
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python Pull requests that update Python code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants