Update Auto Encrypt to version 3.1.0

This updates the certificate signing request (CSR) signing algorithm from the obsolete SHA-1 to SHA-256.

Update Auto Encrypt to version 3.1.0
This updates the certificate signing request (CSR) signing algorithm from the obsolete SHA-1 to SHA-256.
3530133b · Aral Balkan · 23d12cdc · 3530133b · 3530133b · 3530133b
Commit 3530133b authored Jun 07, 2022 by Aral Balkan
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -4,6 +4,14 @@ All notable changes to this project will be documented in this file.

 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/), and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).

+## [3.1.0] - 2022-06-07
+
+Dependency update.
+
+### Changed
+
+  - Update Auto Encrypt to version 3.1.0. This updates the certificate signing request (CSR) signature algorithm from the obsolete SHA-1 to SHA-256. (Let’s Encrypt will beging to reject certificate requests signed with SHA-1 on September 15, 2022. See https://community.letsencrypt.org/t/rejecting-sha-1-csrs-and-validation-using-tls-1-0-1-1-urls/175144)
+
 ## [3.0.3] - 2021-03-24

 A hybrid approach to local certificates.
@@ -12,7 +20,7 @@ A hybrid approach to local certificates.

 Upgrade Auto Encrypt Localhost to version 7.0.7.

-This vresion implements a hybrid approach to mkcert installation and certificate authority and certificate creation that combines the best parts of the methods used in 6.x and 7.x.
+This version implements a hybrid approach to mkcert installation and certificate authority and certificate creation that combines the best parts of the methods used in 6.x and 7.x.

 Specifically:


--- a/LICENSE
+++ b/LICENSE
 @small-tech/https
-Copyright ⓒ 2019-2021 Aral Balkan, Small Technology Foundation
+Copyright ⓒ 2019-present Aral Balkan, Small Technology Foundation

 This program is free software: you can redistribute it and/or modify
 it under the terms of the GNU Affero General Public License as published

--- a/README.md
+++ b/README.md
@@ -149,7 +149,7 @@ A complete [small technology](https://small-tech.org/about/#small-technology) to

 ## Copyright

-&copy; 2020-2021 [Aral Balkan](https://ar.al), [Small Technology Foundation](https://small-tech.org).
+&copy; 2019-present [Aral Balkan](https://ar.al), [Small Technology Foundation](https://small-tech.org).

 Let’s Encrypt is a trademark of the Internet Security Research Group (ISRG). All rights reserved. Node.js is a trademark of Joyent, Inc. and is used with its permission. We are not endorsed by or affiliated with Joyent or ISRG.


--- a/package-lock.json
+++ b/package-lock.json
 {
  "name": "@small-tech/https",
-  "version": "3.0.2",
+  "version": "3.1.0",
  "lockfileVersion": 2,
  "requires": true,
  "packages": {
    "": {
      "name": "@small-tech/https",
-      "version": "3.0.2",
+      "version": "3.1.0",
      "license": "AGPL-3.0-or-later",
      "dependencies": {
-        "@small-tech/auto-encrypt": "^3.0.1",
+        "@small-tech/auto-encrypt": "^3.1.0",
        "@small-tech/auto-encrypt-localhost": "^7.0.7",
        "fs-extra": "^9.0.1"
      },
@@ -86,15 +86,15 @@
      }
    },
    "node_modules/@small-tech/auto-encrypt": {
-      "version": "3.0.1",
-      "resolved": "https://registry.npmjs.org/@small-tech/auto-encrypt/-/auto-encrypt-3.0.1.tgz",
-      "integrity": "sha512-5yhWkA5aCfTREJ7CKYJ8NuHF9x7I30M757XLRkpoX14cajkp1Rj2u6Jp2BYiKcw8s4pRURC2FC1a7qgRi0Vkyw==",
+      "version": "3.1.0",
+      "resolved": "https://registry.npmjs.org/@small-tech/auto-encrypt/-/auto-encrypt-3.1.0.tgz",
+      "integrity": "sha512-adSJHdPERg9LJOHSpVz1GaBXQ3zGZLFezlzJgjRY+mvXE3RHlGamB4b0oR1cSyWwfjR9ZywNDAWAPyNWXov9hQ==",
      "dependencies": {
        "bent": "github:aral/bent#errors-with-response-headers",
        "encodeurl": "^1.0.2",
        "jose": "^1.24.0",
        "moment": "^2.24.0",
-        "node-forge": "^0.10.0",
+        "node-forge": "^1.3.1",
        "ocsp": "^1.2.0",
        "server-destroy": "^1.0.1"
      },
@@ -1407,11 +1407,11 @@
      }
    },
    "node_modules/node-forge": {
-      "version": "0.10.0",
-      "resolved": "https://registry.npmjs.org/node-forge/-/node-forge-0.10.0.tgz",
-      "integrity": "sha512-PPmu8eEeG9saEUvI97fm4OYxXVB6bFvyNTyiUOBichBpFG8A1Ljw3bY62+5oOjDEMHRnd0Y7HQ+x7uzxOzC6JA==",
+      "version": "1.3.1",
+      "resolved": "https://registry.npmjs.org/node-forge/-/node-forge-1.3.1.tgz",
+      "integrity": "sha512-dPEtOeMvF9VMcYV/1Wb8CPoVAXtp6MKMlcbAt4ddqmGqUJ6fQZFXkNZNkNlfevtNkGtaSoXf/vNNNSvgrdXwtA==",
      "engines": {
-        "node": ">= 6.0.0"
+        "node": ">= 6.13.0"
      }
    },
    "node_modules/object-inspect": {
@@ -2253,15 +2253,15 @@
      "integrity": "sha512-UdkG3mLEqXgnlKsWanWcgb6dOjUzJ+XC5f+aWw30qrtjxeNUSfKX1cd5FBzOaXQumoe9nIqeZUvrRJS03HCCtw=="
    },
    "@small-tech/auto-encrypt": {
-      "version": "3.0.1",
-      "resolved": "https://registry.npmjs.org/@small-tech/auto-encrypt/-/auto-encrypt-3.0.1.tgz",
-      "integrity": "sha512-5yhWkA5aCfTREJ7CKYJ8NuHF9x7I30M757XLRkpoX14cajkp1Rj2u6Jp2BYiKcw8s4pRURC2FC1a7qgRi0Vkyw==",
+      "version": "3.1.0",
+      "resolved": "https://registry.npmjs.org/@small-tech/auto-encrypt/-/auto-encrypt-3.1.0.tgz",
+      "integrity": "sha512-adSJHdPERg9LJOHSpVz1GaBXQ3zGZLFezlzJgjRY+mvXE3RHlGamB4b0oR1cSyWwfjR9ZywNDAWAPyNWXov9hQ==",
      "requires": {
        "bent": "github:aral/bent#errors-with-response-headers",
        "encodeurl": "^1.0.2",
        "jose": "^1.24.0",
        "moment": "^2.24.0",
-        "node-forge": "^0.10.0",
+        "node-forge": "^1.3.1",
        "ocsp": "^1.2.0",
        "server-destroy": "^1.0.1"
      },
@@ -3245,9 +3245,9 @@
      "integrity": "sha512-kHmoybcPV8Sqy59DwNDY3Jefr64lK/by/da0ViFcuA4DH0vQg5Q6Ze5VimxkfQNSC+Mls/Kx53s7TjP1RhFEDQ=="
    },
    "node-forge": {
-      "version": "0.10.0",
-      "resolved": "https://registry.npmjs.org/node-forge/-/node-forge-0.10.0.tgz",
-      "integrity": "sha512-PPmu8eEeG9saEUvI97fm4OYxXVB6bFvyNTyiUOBichBpFG8A1Ljw3bY62+5oOjDEMHRnd0Y7HQ+x7uzxOzC6JA=="
+      "version": "1.3.1",
+      "resolved": "https://registry.npmjs.org/node-forge/-/node-forge-1.3.1.tgz",
+      "integrity": "sha512-dPEtOeMvF9VMcYV/1Wb8CPoVAXtp6MKMlcbAt4ddqmGqUJ6fQZFXkNZNkNlfevtNkGtaSoXf/vNNNSvgrdXwtA=="
    },
    "object-inspect": {
      "version": "1.9.0",

--- a/package.json
+++ b/package.json
 {
  "name": "@small-tech/https",
-  "version": "3.0.3",
+  "version": "3.1.0",
  "description": "A drop-in standard Node.js HTTPS module replacement with both automatic development-time (localhost) certificates via Auto Encrypt Localhost and automatic production certificates via Auto Encrypt.",
  "main": "index.js",
  "files": [
@@ -46,7 +46,7 @@
  },
  "license": "AGPL-3.0-or-later",
  "dependencies": {
-    "@small-tech/auto-encrypt": "^3.0.1",
+    "@small-tech/auto-encrypt": "^3.1.0",
    "@small-tech/auto-encrypt-localhost": "^7.0.7",
    "fs-extra": "^9.0.1"
  },