-
Hi,
Here’s just a friendly suggestion for y’all:
Your app currently handles user passwords without securely hashing them, which might pose a significant security risk. To protect your users' data, y…
-
Update the user authentication system to hash passwords before storing them. This will enhance security by ensuring that user passwords are not stored in plain text. Implement password hashing and upd…
-
Hello,
Thanks for Dashy this is a very nice looking project. But
Hashing passwords with SHA256 alone is not sufficient for secure password storage. Here's why:
1. Speed: SHA256 is designed to be fa…
-
**Is your feature request related to a problem? Please describe.**
Thoughts on supporting something such as `Bun.password` - https://bun.sh/docs/api/hashing ?
**Describe the solution you'd like*…
-
SHA-1 Isn't recommended you should use password_hash and password_verify for storing passwords.
ghost updated
2 months ago
-
Storing passwords in plaintext is a very bad idea.
-
In the project we are not using bcrypt js for hashing password we are using node js crypto module.
-
[OWASP password hashing algorithms](https://cheatsheetseries.owasp.org/cheatsheets/Password_Storage_Cheat_Sheet.html#password-hashing-algorithms)
-
### Is your proposal related to a problem?
You are not hashing the password before storing it the DB .
Directly storing the password to lead to breaches and can make the org vulnerable .
##…
-
#### Feature Request
**How**
The bot output the hash string with adjustable security according your input text. I recommend the implementation with secure hashing algorithm or CSPRNG.
**Why**
For tho…