GHSA-vhmj-5q9r-mm9g: BlastRADIUS also affects eduMFA
BlastRADIUS (see blastradius.fail for details) also affects eduMFA prior version 2.2.0, because the Message-Authenticator attributes were not checked.
References
Code Behaviors & Features
Detect and mitigate GHSA-vhmj-5q9r-mm9g with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →