Keycloak does not validate and update refresh token usage atomically

Low severity GitHub Reviewed Published Jan 21, 2026 to the GitHub Advisory Database • Updated Jan 21, 2026

No open alerts for this advisory

Give feedback on Dependabot alerts