NATS Server 2.x before 2.2.0 and JWT library before 2.0.1 have Incorrect Access Control because Import Token bindings are mishandled.
{ "binaries": [ { "binary_version": "0.0~git20181120.285cf2c-4", "binary_name": "golang-github-nats-io-jwt-dev" } ] }
{ "binaries": [ { "binary_version": "0.0~git20181120.285cf2c-4.1", "binary_name": "golang-github-nats-io-jwt-dev" } ] }