diff --git a/setup.cfg b/setup.cfg
index 4ab6ef3b92..96d9af032c 100644
--- a/setup.cfg
+++ b/setup.cfg
@@ -43,7 +43,7 @@ install_requires =
     flask_restful==0.3.10
     flask_sqlalchemy==3.1.1
     flask-fs2[swift, s3]==0.7.27
-    flask-jwt-extended==4.7.0
+    flask-jwt-extended==4.7.1
     flask-migrate==4.0.7
     flask-socketio==5.4.1
     flask==3.1.0
diff --git a/zou/app/services/user_service.py b/zou/app/services/user_service.py
index 8f24c09cf0..87f647569b 100644
--- a/zou/app/services/user_service.py
+++ b/zou/app/services/user_service.py
@@ -595,7 +595,7 @@ def check_supervisor_task_access(task, new_data={}):
         # checks that the supervisor only modifies columns
         # for which he is authorized
         allowed_columns = set(
-            ["priority", "start_date", "due_date", "estimation"]
+            ["priority", "start_date", "due_date", "estimation", "difficulty"]
         )
         if len(set(new_data.keys()) - allowed_columns) == 0:
             user_departments = persons_service.get_current_user(