Postgres's pgcrypto would be better here (but less portable)

[chadfurman]

https://github.com/clevertech/authentication-service/blob/master/src/utils/passwords.js

For postgres users, it would be better to use pgcrypto's built-in crypt function. We need a way to abstract out db-specific stuff rather than relying on Knex to "just work" across all DBs (and thus losing advanced features of specific DBs)