default signing algorithms should not use SHA1

[rhoerbe]

How to change digest and signature to SHA-2?

[leifj]

perhaps you are right - in the meantime, checkout the documentation for xmlsec.Config: https://github.com/leifj/pyXMLSecurity/blob/master/src/xmlsec/__init__.py#L25 for info on how to change the default via pyconfig

[leifj]

Lets keep this open until we figure out a clean transition path to default-sha2

[fredrikt]

How about making a new major version? It seems a lot of issues and pull requests have been piling up in this project, and perhaps the way to get back to the surface is with a new major version.