aarondl
commented
4 years ago I would not turn down a PR that added support for it as a non-default option. Care needs to be taken in selecting a format. One of bcrypt's advantages is that it's got a salt built-in to its output. Here we need to care about salts.
What about argon2?
https://golangcode.com/argon2-password-hashing