It's pretty old and uncool. Uses a lot of sub-deps. Unaudited subdeps which could be updated by different authors is a supply chain security issue.
The suggestion is to switch to https://github.com/paulmillr/scure-bip32 which is being used by ethereum-cryptography in your dep tree. Scure has been audited, paid for by EF.
It's pretty old and uncool. Uses a lot of sub-deps. Unaudited subdeps which could be updated by different authors is a supply chain security issue.
The suggestion is to switch to https://github.com/paulmillr/scure-bip32 which is being used by
ethereum-cryptography
in your dep tree. Scure has been audited, paid for by EF.bip39
could also be replaced with scure-bip39.