pbkdf2 icon indicating copy to clipboard operation
pbkdf2 copied to clipboard

Published 20 hours ago verified publisher icon browserify

Please consider upgrading the default hash function

Open Zemnmez opened this issue 1 year ago • 0 comments

This library defaults to using SHA1 with PBKDF2, which is a very insecure hash function. I strongly suggest updating the default scheme.

See related vulnerabilities:

https://github.com/brix/crypto-js/security/advisories/GHSA-xwcq-pm8m-c4vf https://github.com/entronad/crypto-es/security/advisories/GHSA-mpj8-q39x-wq5h

Zemnmez avatar Oct 28 '23 06:10 Zemnmez