search

tlsfuzzer / python-ecdsa

pure-python ECDSA signature/verification and ECDH key agreement
Other
906 stars 311 forks source link

pip-audit failed due to Minerva timing attack on P-256 #331

Closed mathieuruellanmyscript closed 5 months ago

mathieuruellanmyscript commented 5 months ago

This package make pip-audit fail on CI pipelines.

https://github.com/advisories/GHSA-wj6h-64fc-37mp

tomato42 commented 5 months ago

duplicate of #330