Cuid is deprecated due to security. The same security issues apply to all k-sortable ids and all UUIDs.

[ericelliott]

Please upgrade to Cuid2.

Cuid has been deprecated due to security concerns. Likewise, UUID V4 may be insecure due to its reliance on the web crypto APIs, whose random number generators have historically gone years with known bugs that break cryptographic security (details in the Cuid2 documentation). All other UUIDs leak information which may be exploited.

Other ids that share these security concerns include Ulid, Snowflake, ShardingId, pushId, ObjectId, and KSUID. NanoId shares the same dependence on the web crypto API as UUID V4.

[johnkiely1]

Hi @ericelliott,

Thanks for raising, we've added this to our backlog. We would like to move to cuid2 but backward compatibility would be the the concern and will require some additional thought and effort on our part. We will update here as soon we have any more information to share.