bohmber opened a new pull request #160:
URL: https://github.com/apache/myfaces/pull/160
Update Cryptographic algorithm in StateUtils to a stronger version
(cherry picked from commit 65a0043c5a89b4375496aa295407d8956512e711)
bohmber merged pull request #159:
URL: https://github.com/apache/myfaces/pull/159
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to
volosied commented on pull request #159:
URL: https://github.com/apache/myfaces/pull/159#issuecomment-766374486
Sorry I didn't see your comment from the master PR.
From what I read, we definitely should upgrade DES.
As for HmacSHA256, I don't see any harm in updating. I
tandraschko commented on pull request #159:
URL: https://github.com/apache/myfaces/pull/159#issuecomment-766320930
If we do it for 3.0, then please apply it for 23next too
This is an automated message from the Apache Git
Can we apply this https://github.com/apache/myfaces/pull/152 for 3.0.x as
well?
Here is the pr https://github.com/apache/myfaces/pull/159
Regards
Bernd
On Sat, Jan 23, 2021 at 5:04 PM Bill Lucy wrote:
> +1 from me, thanks!
>
> On Sat, Jan 23, 2021 at 9:15 AM Thomas Andraschko <
>
bohmber opened a new pull request #159:
URL: https://github.com/apache/myfaces/pull/159
Update Cryptographic algorithm in StateUtils to a stronger version
(cherry picked from commit 65a0043c5a89b4375496aa295407d8956512e711)