As reported on February 27, 2018, security researchers discovered a vulnerability in some SAML implementations. We’ve tested and verified that users authenticating into Robin are not affected.
The libraries that Robin uses for authentication are not susceptible to this vulnerability.