7fc6421be3
Fixes the following security issues:
- CVE-2025-47278: In Flask 3.1.0, the way fallback key configuration was
handled resulted in the last fallback key being used for signing,
rather than the current signing key.
For more information, see:
- https://nvd.nist.gov/vuln/detail/CVE-2025-47278
- 73d6504063
For more details on the version bump, see the release notes:
- https://github.com/pallets/flask/releases/tag/3.1.1
Signed-off-by: Thomas Perale <thomas.perale@mind.be>
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
(cherry picked from commit 45439ae262)
Signed-off-by: Thomas Perale <thomas.perale@mind.be>