azure/login
1
0
Fork 0
mirror of https://github.com/azure/login.git synced 2026-03-15 09:20:56 -04:00
Code Issues Packages Projects Releases Wiki Activity
Files
f117ae21662f3432f4dfc4b4d3b0431e60e0fe8f
login/node_modules/http-signature/CHANGES.md
Amruta Kawade 45b10ffd19 Adding node_modules for dependabot (#67) 
* Bump lodash from 4.17.15 to 4.17.19 (#52)

Bumps [lodash](https://github.com/lodash/lodash) from 4.17.15 to 4.17.19.
- [Release notes](https://github.com/lodash/lodash/releases)
- [Commits](https://github.com/lodash/lodash/compare/4.17.15...4.17.19)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Amruta Kawade <65217380+AmrutaKawade@users.noreply.github.com>

* Bump @actions/core from 1.1.3 to 1.2.6 (#60)

Bumps [@actions/core](https://github.com/actions/toolkit/tree/HEAD/packages/core) from 1.1.3 to 1.2.6.
- [Release notes](https://github.com/actions/toolkit/releases)
- [Changelog](https://github.com/actions/toolkit/blob/main/packages/core/RELEASES.md)
- [Commits](https://github.com/actions/toolkit/commits/HEAD/packages/core)

Signed-off-by: dependabot[bot] <support@github.com>

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Amruta Kawade <65217380+AmrutaKawade@users.noreply.github.com>

* updating node_nodules

* updated package-lock

Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2020-10-12 14:58:40 +05:30

1.3 KiB
Raw Blame History

node-http-signature changelog

1.1.1

  • Version of dependency assert-plus updated: old version was missing some license information
  • Corrected examples in http_signing.md, added auto-tests to automatically validate these examples

1.1.0

  • Bump version of sshpk dependency, remove peerDependency on it since it now supports exchanging objects between multiple versions of itself where possible

1.0.2

  • Bump min version of jsprim dependency, to include fixes for using http-signature with browserify

1.0.1

  • Bump minimum version of sshpk dependency, to include fixes for whitespace tolerance in key parsing.

1.0.0

  • First semver release.
  • #36: Ensure verifySignature does not leak useful timing information
  • #42: Bring the library up to the latest version of the spec (including the request-target changes)
  • Support for ECDSA keys and signatures.
  • Now uses sshpk for key parsing, validation and conversion.
  • Fixes for #21, #47, #39 and compatibility with node 0.8

0.11.0

  • Split up HMAC and Signature verification to avoid vulnerabilities where a key intended for use with one can be validated against the other method instead.

0.10.2

  • Updated versions of most dependencies.
  • Utility functions exported for PEM => SSH-RSA conversion.
  • Improvements to tests and examples.
Reference in New Issue View Git Blame Copy Permalink