search

simonepri / phc-argon2

🔒 Node.JS Argon2 password hashing algorithm following the PHC string format.
MIT License
17 stars 6 forks source link

Bump argon2 from 0.19.3 to 0.25.1 #29

Closed dependabot-preview[bot] closed 4 years ago

dependabot-preview[bot] commented 5 years ago

Bumps argon2 from 0.19.3 to 0.25.1.

Release notes *Sourced from [argon2's releases](https://github.com/ranisalt/node-argon2/releases).* > ## v0.24.1 > No release notes provided. > > ## v0.24.0 > No release notes provided. > > ## Prebuilt binaries! > This version adds prebuilt binaries for Node and Electron, as requested by [#141](https://github-redirect.dependabot.com/ranisalt/node-argon2/issues/141). It also fixes an issue with handling of associated data in the previous version. > > ## Associated data support > No release notes provided. > > ## v0.21.0 > - Using time-safe comparison for hash verification > - Fixed Windows and ancient GCC build issues > - Bumped dependencies > > ## Major refactoring > Dropped support for Node 6 (in maintenance mode), which allowed a huge refactoring effort (destructuring assignment and async/await!). [#149](https://github-redirect.dependabot.com/ranisalt/node-argon2/issues/149) converts to N-API instead of NAN for better C++ code.
Commits - [`5bf66f8`](https://github.com/ranisalt/node-argon2/commit/5bf66f838cd4a6416f22c6b381178ed4369e4396) v0.25.1 - [`338f0b0`](https://github.com/ranisalt/node-argon2/commit/338f0b07897c5bc2d57425374c6959974c4b6ad6) Use package.json files field instead of .npmignore ([#213](https://github-redirect.dependabot.com/ranisalt/node-argon2/issues/213)) - [`25ce37c`](https://github.com/ranisalt/node-argon2/commit/25ce37cc1456c00c1ba2f8885a0ff7f8db25f038) v0.25.0 - [`fee5a25`](https://github.com/ranisalt/node-argon2/commit/fee5a25e25b4cda7c0236da83f0402e1e4683d99) Switch to node-pre-gyp ([#202](https://github-redirect.dependabot.com/ranisalt/node-argon2/issues/202)) - [`44a7207`](https://github.com/ranisalt/node-argon2/commit/44a7207447f6669ac1cbab79a1d0f853e946e2f0) Update badge images and URLs - [`6422187`](https://github.com/ranisalt/node-argon2/commit/642218705f7af6fb50738a10b6146efd27fc596d) Move benchmarks to gist - [`ee2c49a`](https://github.com/ranisalt/node-argon2/commit/ee2c49aa75132629148429c0ed93b3c021ff7f1f) Update to v0.24.1 - [`a09dfe0`](https://github.com/ranisalt/node-argon2/commit/a09dfe0c934b847af71e05899abce0ea4f54edbb) Bump eslint-utils from 1.3.1 to 1.4.2 ([#200](https://github-redirect.dependabot.com/ranisalt/node-argon2/issues/200)) - [`d47abe3`](https://github.com/ranisalt/node-argon2/commit/d47abe3cc736154469eb521fd93630272ec605dd) Add options support to the "verify" function ([#199](https://github-redirect.dependabot.com/ranisalt/node-argon2/issues/199)) - [`f13fb31`](https://github.com/ranisalt/node-argon2/commit/f13fb31aab2b675677fa8d825127db282dc9dd2b) chore(package): update standard to version 14.0.0 ([#198](https://github-redirect.dependabot.com/ranisalt/node-argon2/issues/198)) - Additional commits viewable in [compare view](https://github.com/ranisalt/node-argon2/compare/v0.19.3...v0.25.1)


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Automerge options (never/patch/minor, and dev/runtime dependencies) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired)
dependabot-preview[bot] commented 4 years ago

Superseded by #34.