Advisories for Npm/Njwt package

njwt up to v0.4.0 was discovered to contain a prototype pollution in the Parser.prototype.parse method.

Versions of njwt are vulnerable to out-of-bounds reads when a number is passed into the base64urlEncode function. On Node.js or lower this can expose sensitive information and on any other version of Node.js this creates a Denial of Service vulnerability.