jose - npm Package Compare versions
Comparing version 2.0.5 to 2.0.6
@@ -55,3 +55,3 @@ const { inflateRawSync } = require('zlib') | ||
| */ | ||
| const jweDecrypt = (skipValidateHeaders, serialization, jwe, key, { crit = [], complete = false, keyManagementAlgorithms, contentEncryptionAlgorithms } = {}) => { | ||
| const jweDecrypt = (skipValidateHeaders, serialization, jwe, key, { crit = [], complete = false, keyManagementAlgorithms, contentEncryptionAlgorithms, maxPBES2Count = 10000 } = {}) => { | ||
| key = getKey(key, true) | ||
@@ -146,2 +146,8 @@ | ||
| if (alg.startsWith('PBES2')) { | ||
| if (opts && opts.p2c > maxPBES2Count) { | ||
| throw new errors.JWEInvalid('JOSE Header "p2c" (PBES2 Count) out is of acceptable bounds') | ||
| } | ||
| } | ||
| try { | ||
@@ -148,0 +154,0 @@ if (alg === 'dir') { |
| { | ||
| "name": "jose", | ||
| "version": "2.0.5", | ||
| "version": "2.0.6", | ||
| "description": "JSON Web Almost Everything - JWA, JWS, JWE, JWK, JWT, JWKS for Node.js with minimal dependencies", | ||
@@ -5,0 +5,0 @@ "keywords": [ |
@@ -404,2 +404,3 @@ /// <reference types="node" /> | ||
| keyManagementAlgorithms?: string[]; | ||
| maxPBES2Count?: number; | ||
| } | ||
@@ -406,0 +407,0 @@ |
New alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Fixed alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Improved metrics
- Lines of code
- increased by0.12%
4932
Worsened metrics
- Total package byte prevSize
- decreased by-11.21%
213279
- Number of package files
- decreased by-1.09%
91
No dependency changes