| 1 | 1.2.1 / 2022-02-27
|
| 2 | ==================
|
| 3 |
|
| 4 | * update annotations for allowed secret key types (#44, thanks @jyasskin!)
|
| 5 |
|
| 6 |
|
| 7 | 1.2.0 / 2022-02-17
|
| 8 | ==================
|
| 9 |
|
| 10 | * allow buffer and other node-supported types as key (#33)
|
| 11 | * be pickier about extra content after signed portion (#40)
|
| 12 | * some internal code clarity/cleanup improvements (#26)
|
| 13 |
|
| 14 |
|
| 15 | 1.1.0 / 2018-01-18
|
| 16 | ==================
|
| 17 |
|
| 18 | * switch to built-in `crypto.timingSafeEqual` for validation instead of previous double-hash method (thank you @jodevsa!)
|
| 19 |
|
| 20 |
|
| 21 | 1.0.6 / 2015-02-03
|
| 22 | ==================
|
| 23 |
|
| 24 | * use `npm test` instead of `make test` to run tests
|
| 25 | * clearer assertion messages when checking input
|
| 26 |
|
| 27 |
|
| 28 | 1.0.5 / 2014-09-05
|
| 29 | ==================
|
| 30 |
|
| 31 | * add license to package.json
|
| 32 |
|
| 33 | 1.0.4 / 2014-06-25
|
| 34 | ==================
|
| 35 |
|
| 36 | * corrected avoidance of timing attacks (thanks @tenbits!)
|
| 37 |
|
| 38 | 1.0.3 / 2014-01-28
|
| 39 | ==================
|
| 40 |
|
| 41 | * [incorrect] fix for timing attacks
|
| 42 |
|
| 43 | 1.0.2 / 2014-01-28
|
| 44 | ==================
|
| 45 |
|
| 46 | * fix missing repository warning
|
| 47 | * fix typo in test
|
| 48 |
|
| 49 | 1.0.1 / 2013-04-15
|
| 50 | ==================
|
| 51 |
|
| 52 | * Revert "Changed underlying HMAC algo. to sha512."
|
| 53 | * Revert "Fix for timing attacks on MAC verification."
|
| 54 |
|
| 55 | 0.0.1 / 2010-01-03
|
| 56 | ==================
|
| 57 |
|
| 58 | * Initial release
|