chore(deps): update dependency @noble/secp256k1 to v2 #5968
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
^1.7.1
->^2.1.0
Release Notes
paulmillr/noble-secp256k1 (@noble/secp256k1)
v2.1.0
Compare Source
This release comes one year after v2.0.0, following rare update schedule for easy auditability.
SignatureWithRecovery
New Contributors
Full Changelog: paulmillr/noble-secp256k1@2.0.0...2.1.0
v2.0.0
Compare Source
noble-secp256k1 v2 features improved security and smaller attack surface.
The goal of v2 is to provide minimum possible JS library which is safe and fast.
That means the library was reduced 4x, to just over 400 lines. Library size is now just 4KB gzipped.
In order to achieve the goal, some features were moved to noble-curves, which is
even safer and faster drop-in replacement library with same API.
Switch to curves if you intend to keep using these features:
utils.precompute()
for non-base pointOther changes for upgrading from @noble/secp256k1 1.7 to 2.0:
getPublicKey
argument
isCompressed
tofalse
:getPublicKey(priv, false)
sign
signAsync
for async versionSignature
instance with{ r, s, recovery }
propertiescanonical
option was renamed tolowS
recovered
option has been removed because recovery bit is always returned nowder
option has been removed. There are 2 options:fromCompact
,toCompactRawBytes
,toCompactHex
.Compact encoding is simply a concatenation of 32-byte r and 32-byte s.
verify
strict
option was renamed tolowS
getSharedSecret
argument
isCompressed
tofalse
:getSharedSecret(a, b, false)
recoverPublicKey(msg, sig, rec)
was changed tosig.recoverPublicKey(msg)
number
type for private keys have been removed: usebigint
insteadPoint
(2d xy) has been changed toProjectivePoint
(3d xyz)utils
were split intoutils
(same api as in noble-curves) andetc
(hmacSha256Sync
and others)Pull request: https://github.com/paulmillr/noble-secp256k1/pull/92
Full Changelog: paulmillr/noble-secp256k1@1.7.1...2.0.0
Configuration
📅 Schedule: Branch creation - "after 5pm,every weekend" in timezone America/Los_Angeles, Automerge - "after 5pm,every weekend" in timezone America/Los_Angeles.
🚦 Automerge: Enabled.
♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR was generated by Mend Renovate. View the repository job log.