@steemit/rpc-auth
Advanced tools
Comparing version 1.0.2 to 1.1.0
| /// <reference types="node" /> | ||
| import { PrivateKey } from 'dsteem'; | ||
| /** | ||
@@ -43,3 +42,3 @@ * Signing constant used to reserve opcode space and prevent cross-protocol attacks. | ||
| */ | ||
| export declare function sign(request: JsonRpcRequest, account: string, keys: PrivateKey[]): SignedJsonRpcRequest; | ||
| export declare function sign(request: JsonRpcRequest, account: string, keys: any[]): SignedJsonRpcRequest; | ||
| /** | ||
@@ -46,0 +45,0 @@ * Verify that message is signed by account and that the signatures are valid, should throw if verification fails. |
@@ -52,2 +52,3 @@ "use strict"; | ||
| Object.defineProperty(exports, "__esModule", { value: true }); | ||
| var libcrypto_1 = require("@steemit/libcrypto"); | ||
| var crypto_1 = require("crypto"); | ||
@@ -113,3 +114,6 @@ /** | ||
| var key = keys_1[_i]; | ||
| var signature = key.sign(message).toString(); | ||
| if (typeof key === 'string') { | ||
| key = libcrypto_1.PrivateKey.from(key); | ||
| } | ||
| var signature = libcrypto_1.hexify(key.sign(message.buffer)); | ||
| signatures.push(signature); | ||
@@ -116,0 +120,0 @@ } |
| { | ||
| "name": "@steemit/rpc-auth", | ||
| "description": "JSON-RPC 2.0 authentication using steem blockchain authorities", | ||
| "version": "1.0.2", | ||
| "version": "1.1.0", | ||
| "license": "MIT", | ||
@@ -19,3 +19,3 @@ "main": "./lib/index", | ||
| "dependencies": { | ||
| "dsteem": "^0.8.5" | ||
| "@steemit/libcrypto": "^1.0.1" | ||
| }, | ||
@@ -25,2 +25,3 @@ "devDependencies": { | ||
| "@types/node": "^8.0.26", | ||
| "dsteem": "^0.8.5", | ||
| "mocha": "^4.0.1", | ||
@@ -27,0 +28,0 @@ "node-fetch": "^1.7.3", |
Fixed alerts
Major refactor
Supply chain riskPackage has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
- increased by1.1%
14505
- Lines of code
- increased by1.16%
261
- Number of medium supply chain risk alerts
- decreased by-100%
0
Worsened metrics
- Dev dependency count
- increased by11.11%
10
Dependency changes
+ Added@steemit/libcrypto@^1.0.1
+ Added@steemit/libcrypto@1.0.1(transitive)
- Removeddsteem@^0.8.5
- Removedassert-plus@1.0.0(transitive)
- Removedbase-x@3.0.9(transitive)
- Removedbindings@1.5.0(transitive)
- Removedbip66@1.1.5(transitive)
- Removedbn.js@4.12.0(transitive)
- Removedbrorand@1.1.0(transitive)
- Removedbrowserify-aes@1.2.0(transitive)
- Removedbs58@4.0.1(transitive)
- Removedbuffer-xor@1.0.3(transitive)
- Removedbytebuffer@5.0.1(transitive)
- Removedcipher-base@1.0.4(transitive)
- Removedcore-js@2.6.12(transitive)
- Removedcore-util-is@1.0.2(transitive)
- Removedcreate-hash@1.2.0(transitive)
- Removedcreate-hmac@1.1.7(transitive)
- Removeddrbg.js@1.0.1(transitive)
- Removeddsteem@0.8.7(transitive)
- Removedelliptic@6.5.5(transitive)
- Removedevp_bytestokey@1.0.3(transitive)
- Removedextsprintf@1.4.1(transitive)
- Removedfile-uri-to-path@1.0.0(transitive)
- Removedhash-base@3.1.0(transitive)
- Removedhash.js@1.1.7(transitive)
- Removedhmac-drbg@1.0.1(transitive)
- Removedinherits@2.0.4(transitive)
- Removedlong@3.2.0(transitive)
- Removedmd5.js@1.3.5(transitive)
- Removedminimalistic-assert@1.0.1(transitive)
- Removedminimalistic-crypto-utils@1.0.1(transitive)
- Removednan@2.19.0(transitive)
- Removednode-fetch@2.7.0(transitive)
- Removedreadable-stream@3.6.2(transitive)
- Removedripemd160@2.0.2(transitive)
- Removedsafe-buffer@5.2.1(transitive)
- Removedsecp256k1@3.8.0(transitive)
- Removedsha.js@2.4.11(transitive)
- Removedstring_decoder@1.3.0(transitive)
- Removedtr46@0.0.3(transitive)
- Removedutil-deprecate@1.0.2(transitive)
- Removedverror@1.10.1(transitive)
- Removedwebidl-conversions@3.0.1(transitive)
- Removedwhatwg-fetch@2.0.4(transitive)
- Removedwhatwg-url@5.0.0(transitive)