Mick Grove
|
a912043eb9
|
changes in response to code review
|
2025-08-07 18:45:46 -07:00 |
|
Mick Grove
|
0bdd68c900
|
JWT tokens without both 'iss' and 'aud' are no longer reported as active credentials
|
2025-08-07 18:30:40 -07:00 |
|
Mick Grove
|
b71fb5e6e2
|
JWT tokens without both 'iss' and 'aud' are no longer reported as active credentials
|
2025-08-07 17:21:16 -07:00 |
|
Mick Grove
|
8a74eba160
|
- New rules: Telegram bot token, OpenWeatherMap, Apify
- New OpenAI detectors added (@joshlarsen)
- Fixed bug that broke validation when using unnamed group captures
|
2025-08-01 16:56:04 -07:00 |
|
Mick Grove
|
8f587f62de
|
Updating GitHub Action to generate Docker image. Added rules for Diffbot, ai21, baseten. Fixed supabase rule. Added 'alg' to JWT validation output
|
2025-07-18 15:26:18 -07:00 |
|
Mick Grove
|
572d8146e7
|
upgraded cargo dependencies
|
2025-07-17 14:31:09 -07:00 |
|
Mick Grove
|
352d8ff659
|
change that hoists the redirect-free reqwest::Client into a single, lazily-initialized static so every call to validate_jwt re-uses the same handle (and therefore the same connection-pool, DNS cache, TLS session cache, etc)
|
2025-07-14 17:22:51 -07:00 |
|
Mick Grove
|
ee6332a78d
|
change that hoists the redirect-free reqwest::Client into a single, lazily-initialized static so every call to validate_jwt re-uses the same handle (and therefore the same connection-pool, DNS cache, TLS session cache, etc)
|
2025-07-14 17:22:37 -07:00 |
|
Mick Grove
|
93f1e3b1da
|
JWT validation performs OpenID Connect discovery using the iss claim and verifies signatures via JWKS
|
2025-07-14 15:31:44 -07:00 |
|