From b1635cb31b17e0b5f474e1727dbbbc86f02c1b74 Mon Sep 17 00:00:00 2001
From: James Anderson <jim.anderson@auth0.com>
Date: Mon, 14 Mar 2022 14:34:43 -0500
Subject: [PATCH] Update auth0 dependencies to address CVE-2020-36518

---
 lib/build.gradle | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/lib/build.gradle b/lib/build.gradle
index 1df5a26..4fa1c3b 100644
--- a/lib/build.gradle
+++ b/lib/build.gradle
@@ -33,8 +33,8 @@ compileJava {
 ext.springSecurityVersion = '4.2.20.RELEASE'
 
 dependencies {
-    api "com.auth0:java-jwt:3.18.3"
-    api "com.auth0:jwks-rsa:0.20.1"
+    api "com.auth0:java-jwt:3.19.0"
+    api "com.auth0:jwks-rsa:0.21.0"
     api "org.springframework.security:spring-security-core:${springSecurityVersion}"
     api "org.springframework.security:spring-security-web:${springSecurityVersion}"
     api "org.springframework.security:spring-security-config:${springSecurityVersion}"