Is this Library Really Unsuitable for Production?

[kokleong9406]

Hi, I noticed from the README.md that "This is not a library suitable for production.". May I check with you what do you mean by that? I found this library particularly useful for my use case, which requires generating a pair of ECC keys with secp384r1 curve type, and using the keys to wrap/unwrap another AES key. Why is it not suitable for production? Is it because the implementation of the curve is not secure, or there are known vulnerabilities?

[m0r4a]

Maybe he puts that text as a warning, so if the code has a vulnerability, a bug or whatever, he takes the responsibility off himself.