Security News
Fluent Assertions Faces Backlash After Abandoning Open Source Licensing
Fluent Assertions is facing backlash after dropping the Apache license for a commercial model, leaving users blindsided and questioning contributor rights.
pbkdf2-password
Advanced tools
Easy salt/password creation for Node.js, extracted from Mosca.
var bkfd2Password = require("pbkdf2-password");
var hasher = bkfd2Password();
var assert = require("assert");
var opts = {
password: "helloworld"
};
hasher(opts, function(err, pass, salt, hash) {
opts.salt = salt;
hasher(opts, function(err, pass, salt, hash2) {
assert.deepEqual(hash2, hash);
// password mismatch
opts.password = "aaa";
hasher(opts, function(err, pass, salt, hash2) {
assert.notDeepEqual(hash2, hash);
console.log("OK");
});
});
});
Creates a new hasher functions, with the specified options.
Options:
saltLength
, the length of the random saltiterations
, number of pbkdf2 iterationskeyLength
, the length of the generated keysdigest
, the digest algorithm, default 'sha1'
Hash a password, using a hash and the pbkd2 crypto module.
Options:
password
, the password to hash.salt
, the salt to use, as a base64 string.If the password
is left undefined, a new
10-bytes password will be generated, and converted
to base64.
If the salt
is left undefined, a new salt is generated.
The callback will be called with the following arguments:
MIT
FAQs
Easy salt/password creation for Node.js, extracted from Mosca
We found that pbkdf2-password demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Fluent Assertions is facing backlash after dropping the Apache license for a commercial model, leaving users blindsided and questioning contributor rights.
Research
Security News
Socket researchers uncover the risks of a malicious Python package targeting Discord developers.
Security News
The UK is proposing a bold ban on ransomware payments by public entities to disrupt cybercrime, protect critical services, and lead global cybersecurity efforts.