Note that there might still be some concerns, e.g. when strlen() functionality has been overwritten. More complete libraries like password_compat and random_compat define their own strlen() because of this. But I feel like nested polyfills are way out of scope for Selfauth. Better to educate people and get them to update PHP.
Should probably write a security section instead of the current warnings section…
Bite size PR this time!
Fixes #17.
Note that there might still be some concerns, e.g. when
strlen()functionality has been overwritten. More complete libraries like password_compat and random_compat define their ownstrlen()because of this. But I feel like nested polyfills are way out of scope for Selfauth. Better to educate people and get them to update PHP.Should probably write a security section instead of the current warnings section…