appc-security - npm Package Compare versions

Comparing version 0.0.14 to 0.0.15

lib/index.js

@@ -99,3 +99,3 @@ /**
 			// use the password to create a derived key used for encrypting
-			derivedKey = crypto.pbkdf2Sync(key, saltAndPepper, ITERATIONS, KEY_LENGTH / keySizeFactor),
+			derivedKey = crypto.pbkdf2Sync(key, saltAndPepper, ITERATIONS, KEY_LENGTH / keySizeFactor, 'SHA1'),
 			// create our cipher
@@ -213,3 +213,3 @@ cipher = crypto.createCipheriv('AES-' + size + '-CBC', derivedKey, iv);
 		// create our derived key
-		var derivedKey = crypto.pbkdf2Sync(key, saltAndPepper, ITERATIONS, KEY_LENGTH / keySizeFactor),
+		var derivedKey = crypto.pbkdf2Sync(key, saltAndPepper, ITERATIONS, KEY_LENGTH / keySizeFactor, 'SHA1'),
 			ivKey = new Buffer(iv, 'hex'),
@@ -258,3 +258,3 @@ // create our decryption cipher
 		},
-		secret = crypto.pbkdf2Sync(apikey, sha1(apikey + key_secret + master_secret), 100, 16).toString('base64'),
+		secret = crypto.pbkdf2Sync(apikey, sha1(apikey + key_secret + master_secret), 100, 16, 'SHA1').toString('base64'),
 		options = {
@@ -284,3 +284,3 @@ expiresIn: String(expiry),
 			decoded = jwt.decode(buf, {complete: true}),
-			secret = crypto.pbkdf2Sync(decoded.payload.apikey, sha1(decoded.payload.apikey + decoded.payload.headers.$ks + master_secret), 100, 16).toString('base64');
+			secret = crypto.pbkdf2Sync(decoded.payload.apikey, sha1(decoded.payload.apikey + decoded.payload.headers.$ks + master_secret), 100, 16, 'SHA1').toString('base64');
 		return jwt.verify(buf, secret, {algorithm: 'HS256', issuer: 'https://security.appcelerator.com'});
@@ -287,0 +287,0 @@ }

package.json

 {
   "name": "appc-security",
-  "version": "0.0.14",
+  "version": "0.0.15",
   "description": "Appcelerator Security Best Practices Library for Node",
@@ -5,0 +5,0 @@ "main": "index.js",

No alert changes

Improved metrics

Total package byte prevSize

50727

increased by0.06%

No dependency changes