The following versions of our libraries are receiving security updates:
| Version | Supported |
|---|---|
@azure/msal-browser@2.x.x |
✅ |
msal@1.x.x |
✅ |
msal@0.x.x |
❌ |
@azure/msal-angular@2.x.x |
✅ |
@azure/msal-angular@1.x.x |
✅ |
@azure/msal-angular@0.x.x |
❌ |
@azure/msal-angularjs@0.1.x |
✅ |
@azure/msal-react@1.x.x |
✅ |
@azure/msal-node@1.x.x |
✅ |
If you find a security issue with our libraries or services please report it to the Microsoft Security Response Center (MSRC) with as much detail as possible. Your submission may be eligible for a bounty through the Microsoft Bounty program. Please do not post security issues to GitHub Issues or any other public site. We will contact you shortly upon receiving the information. We encourage you to get notifications of when security incidents occur by visiting this page and subscribing to Security Advisory Alerts.