deprecating cryptonite

[juhp]

These are packages which have not migrated yet to crypton

cryptonite (Vincent Hanquez) (not present) depended on by:

• [ ] aos-signature-0.1.1 (>=0). Stephen Diehl stephen.m.diehl@gmail.com @sdiehl. Used by: library
• [ ] aws-0.24.2 (>=0.11). Grandfathered dependencies. Used by: library
• [ ] cacophony-0.10.1 (>=0.22). John Galt jgalt@centromere.net @centromere. Used by: library
• [ ] cardano-coin-selection-1.0.1 (>=0). Jonathan Knowles stackage@jonathanknowles.net @jonathanknowles. Used by: library
• [ ] clientsession-0.9.2.0 (>=0.15). Grandfathered dependencies. Used by: library
• [ ] credential-store-0.1.2 (>=0.7). Andrey Sverdlichenko blaze@ruddy.ru @rblaze. Used by: library
• [ ] cryptohash-0.11.9 (>=0.13). Vincent Hanquez. Used by: library
• [ ] cryptohash-cryptoapi-0.1.4 (>=0.13). Grandfathered dependencies. Used by: library
• [ ] cryptonite-conduit-0.2.2 (>=0). Michael Snoyman michael@snoyman.com @snoyberg. Used by: library
• [ ] cryptonite-openssl-0.7 (>=0). Vincent Hanquez. Used by: library
• [ ] eap-0.9.0.2 (>=0.21 && < 1.0). Erick Gonzalez erick@codemonkeylabs.de @codemonkeylabs-de. Used by: library
• [ ] faktory-1.1.3.0 (>=0.26). Freckle Engineering freckle-engineering@renaissance.com @pbrisbin @mjgpy3 @stevenxl. Used by: library
• [x] gemini-exports-0.1.0.1 (< 1). Pavan Rikhi pavan.rikhi@gmail.com @prikhi. Used by: library
• [ ] github-webhooks-0.17.0 (>=0). Cuedo Business Solutions foss@cuedo.com.au @cuedo. Used by: library
• [ ] haskoin-core-1.1.0 (>=0.26). Jean-Pierre Rupp xenog@protonmail.com @xenog. Used by: library
• [ ] hasql-migration-0.3.0 (>=0.11). Timo von Holtz tvh@tvholtz.de @tvh. Used by: library
• [ ] ipython-kernel-0.11.0.0 (>=0). Andrew Gibiansky andrew.gibiansky@gmail.com @gibiansky. Used by: library
• [x] locators-0.3.0.3 (>=0). Andrew Cowie istathar@gmail.com @istathar. Used by: library
• [ ] merkle-tree-0.1.1 (>=0.21). Stephen Diehl stephen.m.diehl@gmail.com @sdiehl. Used by: library
• [ ] oblivious-transfer-0.1.0 (>=0). Stephen Diehl stephen.m.diehl@gmail.com @sdiehl. Used by: library
• [ ] password-3.0.4.0 (>=0.15.1 && < 0.31). Dennis Gosnell cdep.illabout@gmail.com @cdepillabout. Used by: library
• [ ] pedersen-commitment-0.2.0 (>=0.21). Stephen Diehl stephen.m.diehl@gmail.com @sdiehl. Used by: library
• [x] protocol-radius-0.0.1.1 (>=0.13). Kei Hibino ex8k.hibino@gmail.com @khibino. Used by: library
• [ ] pusher-http-haskell-2.1.0.17 (>=0.6 && < 0.31). Will Sewell me@willsewell.com @willsewell. Used by: library
• [ ] radius-0.7.1.0 (>=0). Erick Gonzalez erick@codemonkeylabs.de @codemonkeylabs-de. Used by: library
• [ ] random-bytestring-0.1.4 (>=0.24). Lars Kuhtz lakuhtz@gmail.com @larskuhtz. Used by: benchmark
• [ ] smtp-mail-0.4.0.1 (>=0). Spencer Janssen spencerjanssen@gmail.com @spencerjanssen. Used by: library
• [ ] yesod-auth-1.6.11.3 (>=0). Michael Snoyman michael@snoyman.com @snoyberg. Used by: library
• [x] yesod-auth-oauth2-0.7.2.0 (>=0.25). Freckle Engineering freckle-engineering@renaissance.com @pbrisbin @mjgpy3 @stevenxl. Used by: library
• [ ] yesod-static-1.6.1.0 (>=0.11). Michael Snoyman michael@snoyman.com @snoyberg. Used by: library

My understanding is that crypton should be a maintained drop-in replacement for the unmaintained (and less secure) cryptonite so all that should be needed to update your dependencies on cryptonite to crypton instead

[juhp]

For more context see haskell/security-advisories#187 and #7336

It would be really great if some would step to forking/replacing memory too

[prikhi]

awesome thanks, gemini-exports fixed in v0.1.0.2

[khibino]

I uploaded protocol-radius-0.0.1.2 with change of dependency from cryptonite to crypton https://hackage.haskell.org/package/protocol-radius-0.0.1.2

[istathar]

Uploaded locators 0.3.0.5 changing dependency from cryptonite to crypton. Thanks for pursuing this.

• https://github.com/aesiniath/locators-haskell/pull/6

[pbrisbin]

yesod-auth-oauth2 updated to crypton as of 0.7.3.0: https://hackage.haskell.org/package/yesod-auth-oauth2-0.7.3.0/dependencies