Argon2id self-migrating secret hashing: hashPassword/hashRecoveryPhrase now use argon2id (OWASP params); verifyPassword detects algo by prefix and verifies both argon2id and legacy bcrypt; needsRehash() flags bcrypt hashes; callers rehash on next successful login; cli init upgraded; legacy bcrypt path covered by tests (v1.56.122)

dev · 3 weeks ago · 2026-06-19 · 14.6 MB

session: security foundation ยท agent: claude-sonnet-4-6

$ koh steal kepr.uk/kepr@6b5c25c000a2
·
← e2d2d2dc0477 29f9db32b0bc →
⇓ download .face