Httpsig

Latest version: v1.3.0

Safety actively analyzes 613797 Python packages for vulnerabilities to keep your Python projects secure.

Scan your dependencies

Page 1 of 3

1.3.0

-------------------

* Relax pycryptodome requirements (PR14 by cveilleux)
* Ability to supply another signature header like Signature (PR15 by rbignon)
* Fixed 2; made Signer.sign() public
* Dropped Python 3.3, added Python 3.7.

1.2.0

-------------------

* Switched to pycryptodome instead of PyCrypto (PR11 by iandouglas)
* Updated tests with the test data from Draft 8 and verified it still passes.
* Dropped official Python 3.2 support (pip dropped it so it can't be properly tested)
* Cleaned up the code to be more PEP8-like.

1.1.2

-------------------

* HMAC verification is now constant-time.

1.1.1

- Version of dependency `assert-plus` updated: old version was missing
some license information
- Corrected examples in `http_signing.md`, added auto-tests to
automatically validate these examples

1.1.0

- Bump version of `sshpk` dependency, remove peerDependency on it since
it now supports exchanging objects between multiple versions of itself
where possible

1.0.3

-------------------

* Unified the default signing algo under one setting. Setting httpsig.sign.DEFAULT_SIGN_ALGORITHM changes it for all future instances.
* Handle invalid params a little better.

Page 1 of 3

© 2024 Safety CLI Cybersecurity Inc. All Rights Reserved.