oss/miniflux-v2
oss/miniflux-v2
1
0
Fork 0
mirror of https://github.com/miniflux/v2.git synced 2025-08-06 17:41:00 +00:00
Code Wiki Activity
2251 commits 2 branches 84 tags 75 MiB
Commit graph

6 commits

Author SHA1 Message Date
jvoisin
9a1d9593b3 refactor(crypto): use rand.Text() instead of a custom implementation 
Go 1.24 provides the helpful rand.Text() function, returning a base32-encoded
string containing at least 128 bits of randomness. We should make use of it
everywhere it makes sense to do so, if only to not having to think about much
entropy do we need for each cases, and just trust the go crypto team.

Also, rand.Read() can't fail, so no need to check its return value:
https://pkg.go.dev/crypto/rand#Read This behaviour is consistent with go's
standard library itself.
 2025-06-18 20:12:55 -07:00
jvoisin
9c8a7dfffe Make use of HashFromBytes everywhere 
It feels a bit silly to have a function and to not make use of it.
 2024-03-11 15:22:22 -07:00
jvoisin
d55b410800 Use constant-time comparison for anti-csrf tokens 
This is probably completely overkill, but since anti-csrf tokens are secrets,
they should be compared against untrusted inputs in constant time.
 2024-03-03 20:28:13 -08:00
jvoisin
bce21a9f91 Remove github.com/google/uuid 
Replace it with a hand-rolled implementation. Heck, an UUID isn't even a
requirement, according to [omnivore](https://docs.omnivore.app/integrations/api.html#saving-a-url-with-the-api)'s
documentation, any "unique id" would do.
 2024-02-26 18:31:12 -08:00
Frédéric Guillot
48f6885f44 Add generic webhook integration 2023-09-09 13:11:42 -07:00
Frédéric Guillot
168a870c02 Move internal packages to an internal folder 
For reference: https://go.dev/doc/go1.4#internalpackages
 2023-08-10 20:29:34 -07:00
Renamed from crypto/crypto.go (Browse further)