Socket
Socket
Sign inDemoInstall

sshpk

Package Overview
Dependencies
8
Maintainers
1
Versions
50
Alerts
File Explorer

Advanced tools

Install Socket

Detect and block malicious and high-risk dependencies

Install

Comparing version 1.7.2 to 1.7.3

bin/sshpk-sign

2

lib/ed-compat.js

@@ -43,2 +43,4 @@ // Copyright 2015 Joyent, Inc.

if (Signature.isSignature(signature, [2, 0])) {
if (signature.type !== 'ed25519')
return (false);
sig = signature.toBuffer('raw');

@@ -45,0 +47,0 @@

@@ -178,4 +178,10 @@ // Copyright 2015 Joyent, Inc.

var key = this.toBuffer('pkcs8');
var self = this;
v.verify = function (signature, fmt) {
if (Signature.isSignature(signature, [2, 0])) {
if (signature.type !== self.type)
return (false);
if (signature.hashAlgorithm &&
signature.hashAlgorithm !== hashAlgo)
return (false);
return (oldVerify(key, signature.toBuffer('asn1')));

@@ -182,0 +188,0 @@

5

package.json
{
"name": "sshpk",
"version": "1.7.2",
"version": "1.7.3",
"description": "A library for finding and using SSH public keys",

@@ -37,3 +37,4 @@ "main": "lib/index.js",

"bin": "./bin",
"lib": "./lib"
"lib": "./lib",
"man": "./man/man1"
},

@@ -40,0 +41,0 @@ "homepage": "https://github.com/arekinath/node-sshpk#readme",

Sorry, the diff of this file is not supported yet

SocketSocket SOC 2 Logo

Product

  • Package Alerts
  • Integrations
  • Docs
  • Pricing
  • FAQ
  • Roadmap

Stay in touch

Get open source security insights delivered straight into your inbox.


  • Terms
  • Privacy
  • Security

Made with ⚡️ by Socket Inc