retitle 781640 Asymmetric keys and x509 certificates should not be used as HMAC keys forwarded 781640 https://github.com/jpadilla/pyjwt/issues/105 thanks 0.2.1 isn't vulnerable to the alg="none" bug, which was added in 0.3.0.