-
Adds an optional userId parameter to upper-level
encrypt
,sign
, andencryptSessionKey
functions which can be used to select which of a key's users to use for encryption/signing. This will throw an error if a userId is passed in that is not present in the encrypting/signing key. -
Always use a subkey for signing when available before resorting to using the primary key
-
Removal of some ESLint silencers
-
When the
ignore_mdc_error
config flag is set to false (the default), decryption of symmetrically encrypted data packets without integrity protection will always fail, regardless of the cipher used