Skip to content

[Snyk] Upgrade @noble/hashes from 1.2.0 to 1.6.1#1

Open
MManke188 wants to merge 1 commit into
masterfrom
snyk-upgrade-8c5016ffbd088d157f14d657dd2cdd6a
Open

[Snyk] Upgrade @noble/hashes from 1.2.0 to 1.6.1#1
MManke188 wants to merge 1 commit into
masterfrom
snyk-upgrade-8c5016ffbd088d157f14d657dd2cdd6a

Conversation

@MManke188

Copy link
Copy Markdown

snyk-top-banner

Snyk has created this PR to upgrade @noble/hashes from 1.2.0 to 1.6.1.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.


  • The recommended version is 8 versions ahead of your current version.

  • The recommended version was released on 25 days ago.

Release notes
Package name: @noble/hashes
  • 1.6.1 - 2024-11-24
    • Fix argon2 initialization
    • pkg.json: include d.ts.map

    Full Changelog: 1.6.0...1.6.1

  • 1.6.0 - 2024-11-22
    • Add support for 4GB+ arrays on supported platforms
    • argon2: Harden, make it stable
    • utils: Improve isBytes speed
    • Improve compatibility with parsers & minifiers

    New Contributors

    Full Changelog: 1.5.0...1.6.0

  • 1.5.0 - 2024-09-01
    • Scrypt: relax params check to allow r: 1, p: 8
    • Export additional typescript types
    • Add support for node.js v14.21.3 in addition to v16+
    • Export sha224, sha384, sha512_224, sha512_256 in single-file build

    New Contributors

    Full Changelog: 1.4.0...1.5.0

  • 1.4.0 - 2024-03-14
    • Add support for big endian platforms by @ jonathan-albrecht-ibm in #81
    • Use XOF constructor wrapper for cShake by @ stknob in #82
    • Rename _sha2 to _md
    • utils, _assert: reduce code duplication
    • tsconfig: change module to Node16

    Full Changelog: 1.3.3...1.4.0

  • 1.3.3 - 2023-12-11
    • Add module sha2, an alias to already-existing sha256 and sha512
    • sha3-addons: Implement TurboSHAKE (https://eprint.iacr.org/2023/342)
    • utils improvements
      • hexToBytes: speed-up 6x, improve error formatting
      • isBytes: improve reliability in bad environments such as jsdom
      • concatBytes: improve safety by early-checking the type
    • Bump typescript version used to build the package to 5.3.2

    Full Changelog: 1.3.2...1.3.3

  • 1.3.2 - 2023-08-23
    • Tree shaking improvements:
      • annotate top-level incovations as pure
      • use const enums
      • decrease wildcard imports of _assert and _u64
      • declare package side-effects free
    • argon2: fix checks for parallelism and iterations parameters
    • utils: fix isPlainObject in serverless environments, used in scrypt and pbkdf2
    • typescript: Disable moduleResolution config setting, since it is viral

    New Contributors

    Full Changelog: 1.3.1...1.3.2

  • 1.3.1 - 2023-06-03

    What's Changed

    • Fix utf8ToBytes in firefox extension context (https://bugzil.la/1681809)
    • Ensure blake3 inputs are immutable by @ libitx in #51
    • sha3-addons: add PURE annotations to reduce bundle size
    • utils: harmonize with noble-curves
    • Type fixes
      • sha3, blake3: Fix XOF type issue, closes #55
      • hmac: export HMAC type, fix #52
      • cryptoNode: remove dependency on @ types/node

    New Contributors

    Full Changelog: 1.3.0...1.3.1

  • 1.3.0 - 2023-03-16

    Changed logic for importing native cryptography. Built-in crypto (webcrypto) is now used through all platforms, including node.js.

    Full Changelog: 1.2.0...1.3.0

  • 1.2.0 - 2023-02-02

    Full Changelog: 1.1.5...1.2.0

from @noble/hashes GitHub release notes

Important

  • Check the changes in this PR to ensure they won't cause issues with your project.
  • This PR was automatically created by Snyk using the credentials of a real user.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

Snyk has created this PR to upgrade @noble/hashes from 1.2.0 to 1.6.1.

See this package in npm:
@noble/hashes

See this project in Snyk:
https://app.snyk.io/org/orange-kush/project/de137f20-f91d-4921-8497-5a750e66beb8?utm_source=github&utm_medium=referral&page=upgrade-pr
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants