Fix session nonce re-use

jetzig-framework / jetzig

Jetzig is a web framework written in Zig

MIT License

308 stars 15 forks source link

Closed bobf closed 1 month ago

bobf commented 1 month ago

Use a new secure-random nonce for each session encryption.

Many thanks to @Trundle for writing this gist highlighting the severity of this issue.