Skip to content

Fix vulnerability issues in IdentityServer4 package (Development Identity Server) #4751

Open
@brendankowitz

Description

The PR Build & Deploy pipeline was failing due to this vulnerability issue in IdentityServer4 package. The error was temporarily suppressed, and we need a permanent fix for the issue. See the docs below for more details.

IdentityServer Open Redirect vulnerability · CVE-2024-39694 · GitHub Advisory Database

An alternative opensource library might be: OpenIddict

Same as: AB#123727

Metadata

Assignees

No one assigned

    Labels

    Bug-SecuritySecurity related bugs.Open sourceThis change is only relevant to the OSS code or release.Up for grabsThe issue require minimal context and is well-suited for new contributors.

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions