Commit 3530133b authored by Aral Balkan's avatar Aral Balkan
Browse files

Update Auto Encrypt to version 3.1.0

This updates the certificate signing request (CSR) signing algorithm from the obsolete SHA-1 to SHA-256.
parent 23d12cdc
......@@ -4,6 +4,14 @@ All notable changes to this project will be documented in this file.
The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/), and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
## [3.1.0] - 2022-06-07
Dependency update.
### Changed
- Update Auto Encrypt to version 3.1.0. This updates the certificate signing request (CSR) signature algorithm from the obsolete SHA-1 to SHA-256. (Let’s Encrypt will beging to reject certificate requests signed with SHA-1 on September 15, 2022. See https://community.letsencrypt.org/t/rejecting-sha-1-csrs-and-validation-using-tls-1-0-1-1-urls/175144)
## [3.0.3] - 2021-03-24
A hybrid approach to local certificates.
......@@ -12,7 +20,7 @@ A hybrid approach to local certificates.
Upgrade Auto Encrypt Localhost to version 7.0.7.
This vresion implements a hybrid approach to mkcert installation and certificate authority and certificate creation that combines the best parts of the methods used in 6.x and 7.x.
This version implements a hybrid approach to mkcert installation and certificate authority and certificate creation that combines the best parts of the methods used in 6.x and 7.x.
Specifically:
......
@small-tech/https
Copyright ⓒ 2019-2021 Aral Balkan, Small Technology Foundation
Copyright ⓒ 2019-present Aral Balkan, Small Technology Foundation
This program is free software: you can redistribute it and/or modify
it under the terms of the GNU Affero General Public License as published
......
......@@ -149,7 +149,7 @@ A complete [small technology](https://small-tech.org/about/#small-technology) to
## Copyright
© 2020-2021 [Aral Balkan](https://ar.al), [Small Technology Foundation](https://small-tech.org).
© 2019-present [Aral Balkan](https://ar.al), [Small Technology Foundation](https://small-tech.org).
Let’s Encrypt is a trademark of the Internet Security Research Group (ISRG). All rights reserved. Node.js is a trademark of Joyent, Inc. and is used with its permission. We are not endorsed by or affiliated with Joyent or ISRG.
......
{
"name": "@small-tech/https",
"version": "3.0.2",
"version": "3.1.0",
"lockfileVersion": 2,
"requires": true,
"packages": {
"": {
"name": "@small-tech/https",
"version": "3.0.2",
"version": "3.1.0",
"license": "AGPL-3.0-or-later",
"dependencies": {
"@small-tech/auto-encrypt": "^3.0.1",
"@small-tech/auto-encrypt": "^3.1.0",
"@small-tech/auto-encrypt-localhost": "^7.0.7",
"fs-extra": "^9.0.1"
},
......@@ -86,15 +86,15 @@
}
},
"node_modules/@small-tech/auto-encrypt": {
"version": "3.0.1",
"resolved": "https://registry.npmjs.org/@small-tech/auto-encrypt/-/auto-encrypt-3.0.1.tgz",
"integrity": "sha512-5yhWkA5aCfTREJ7CKYJ8NuHF9x7I30M757XLRkpoX14cajkp1Rj2u6Jp2BYiKcw8s4pRURC2FC1a7qgRi0Vkyw==",
"version": "3.1.0",
"resolved": "https://registry.npmjs.org/@small-tech/auto-encrypt/-/auto-encrypt-3.1.0.tgz",
"integrity": "sha512-adSJHdPERg9LJOHSpVz1GaBXQ3zGZLFezlzJgjRY+mvXE3RHlGamB4b0oR1cSyWwfjR9ZywNDAWAPyNWXov9hQ==",
"dependencies": {
"bent": "github:aral/bent#errors-with-response-headers",
"encodeurl": "^1.0.2",
"jose": "^1.24.0",
"moment": "^2.24.0",
"node-forge": "^0.10.0",
"node-forge": "^1.3.1",
"ocsp": "^1.2.0",
"server-destroy": "^1.0.1"
},
......@@ -1407,11 +1407,11 @@
}
},
"node_modules/node-forge": {
"version": "0.10.0",
"resolved": "https://registry.npmjs.org/node-forge/-/node-forge-0.10.0.tgz",
"integrity": "sha512-PPmu8eEeG9saEUvI97fm4OYxXVB6bFvyNTyiUOBichBpFG8A1Ljw3bY62+5oOjDEMHRnd0Y7HQ+x7uzxOzC6JA==",
"version": "1.3.1",
"resolved": "https://registry.npmjs.org/node-forge/-/node-forge-1.3.1.tgz",
"integrity": "sha512-dPEtOeMvF9VMcYV/1Wb8CPoVAXtp6MKMlcbAt4ddqmGqUJ6fQZFXkNZNkNlfevtNkGtaSoXf/vNNNSvgrdXwtA==",
"engines": {
"node": ">= 6.0.0"
"node": ">= 6.13.0"
}
},
"node_modules/object-inspect": {
......@@ -2253,15 +2253,15 @@
"integrity": "sha512-UdkG3mLEqXgnlKsWanWcgb6dOjUzJ+XC5f+aWw30qrtjxeNUSfKX1cd5FBzOaXQumoe9nIqeZUvrRJS03HCCtw=="
},
"@small-tech/auto-encrypt": {
"version": "3.0.1",
"resolved": "https://registry.npmjs.org/@small-tech/auto-encrypt/-/auto-encrypt-3.0.1.tgz",
"integrity": "sha512-5yhWkA5aCfTREJ7CKYJ8NuHF9x7I30M757XLRkpoX14cajkp1Rj2u6Jp2BYiKcw8s4pRURC2FC1a7qgRi0Vkyw==",
"version": "3.1.0",
"resolved": "https://registry.npmjs.org/@small-tech/auto-encrypt/-/auto-encrypt-3.1.0.tgz",
"integrity": "sha512-adSJHdPERg9LJOHSpVz1GaBXQ3zGZLFezlzJgjRY+mvXE3RHlGamB4b0oR1cSyWwfjR9ZywNDAWAPyNWXov9hQ==",
"requires": {
"bent": "github:aral/bent#errors-with-response-headers",
"encodeurl": "^1.0.2",
"jose": "^1.24.0",
"moment": "^2.24.0",
"node-forge": "^0.10.0",
"node-forge": "^1.3.1",
"ocsp": "^1.2.0",
"server-destroy": "^1.0.1"
},
......@@ -3245,9 +3245,9 @@
"integrity": "sha512-kHmoybcPV8Sqy59DwNDY3Jefr64lK/by/da0ViFcuA4DH0vQg5Q6Ze5VimxkfQNSC+Mls/Kx53s7TjP1RhFEDQ=="
},
"node-forge": {
"version": "0.10.0",
"resolved": "https://registry.npmjs.org/node-forge/-/node-forge-0.10.0.tgz",
"integrity": "sha512-PPmu8eEeG9saEUvI97fm4OYxXVB6bFvyNTyiUOBichBpFG8A1Ljw3bY62+5oOjDEMHRnd0Y7HQ+x7uzxOzC6JA=="
"version": "1.3.1",
"resolved": "https://registry.npmjs.org/node-forge/-/node-forge-1.3.1.tgz",
"integrity": "sha512-dPEtOeMvF9VMcYV/1Wb8CPoVAXtp6MKMlcbAt4ddqmGqUJ6fQZFXkNZNkNlfevtNkGtaSoXf/vNNNSvgrdXwtA=="
},
"object-inspect": {
"version": "1.9.0",
......
{
"name": "@small-tech/https",
"version": "3.0.3",
"version": "3.1.0",
"description": "A drop-in standard Node.js HTTPS module replacement with both automatic development-time (localhost) certificates via Auto Encrypt Localhost and automatic production certificates via Auto Encrypt.",
"main": "index.js",
"files": [
......@@ -46,7 +46,7 @@
},
"license": "AGPL-3.0-or-later",
"dependencies": {
"@small-tech/auto-encrypt": "^3.0.1",
"@small-tech/auto-encrypt": "^3.1.0",
"@small-tech/auto-encrypt-localhost": "^7.0.7",
"fs-extra": "^9.0.1"
},
......
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment