Switched to nanoid for key generation

To try and prevent any security issues, use an external package to generate key instead of doing it ourselves. Note: we have to use nanoid version 3 as nanoid version 4 requires ESM. Currently, nanoid v3 is still supported. Signed-off-by: Matthew Nickson <mnickson@sidingsmedia.com>
2025-08-11 11:44:19 +08:00 · 2023-02-26 19:36:50 +00:00
parent 11fa690e09
commit 669f8700b2
3 changed files with 6 additions and 5 deletions
--- a/package-lock.json
+++ b/package-lock.json
@@ -45,6 +45,7 @@
                "mqtt": "~4.3.7",
                "mssql": "~8.1.4",
                "mysql2": "~2.3.3",
+                "nanoid": "^3.3.4",
                "node-cloudflared-tunnel": "~1.0.9",
                "node-radius-client": "~1.0.0",
                "nodemailer": "~6.6.5",
@@ -14247,7 +14248,6 @@
            "version": "3.3.4",
            "resolved": "https://registry.npmjs.org/nanoid/-/nanoid-3.3.4.tgz",
            "integrity": "sha512-MqBkQh/OHTS2egovRtLk45wEyNXwF+cokD+1YPf9u5VfJiRdAiRwB2froX5Co9Rh20xs4siNPm8naNotSD6RBw==",
-            "dev": true,
            "bin": {
                "nanoid": "bin/nanoid.cjs"
            },
@@ -29825,8 +29825,7 @@
        "nanoid": {
            "version": "3.3.4",
            "resolved": "https://registry.npmjs.org/nanoid/-/nanoid-3.3.4.tgz",
-            "integrity": "sha512-MqBkQh/OHTS2egovRtLk45wEyNXwF+cokD+1YPf9u5VfJiRdAiRwB2froX5Co9Rh20xs4siNPm8naNotSD6RBw==",
-            "dev": true
+            "integrity": "sha512-MqBkQh/OHTS2egovRtLk45wEyNXwF+cokD+1YPf9u5VfJiRdAiRwB2froX5Co9Rh20xs4siNPm8naNotSD6RBw=="
        },
        "native-duplexpair": {
            "version": "1.0.0",