JWT tokens are often used to Authorize users

• True
• False

What are some tips to protect against JWT issues?

• Use lesser known libraries that update on a regular basis
• Use a strong key that is not easy to brute force
• Though less common these days, make sure your library does not allow for signing of the JWT with the “none” algorithm as this does not require a key
• Validate your input and protect against HTML injection
• None of the above