synapse-product

Matrix-Mirrors/synapse-product

Fork 0

mirror of https://git.anonymousland.org/anonymousland/synapse-product.git synced 2024-10-01 08:25:44 -04:00

Commit Graph

Author	SHA1	Message	Date
Dan Callahan	498084228b	Use Python's secrets module instead of random (#9984 ) Functionally identical, but more obviously cryptographically secure. ...Explicit is better than implicit? Avoids needing to know that SystemRandom() implies a CSPRNG, and complies with the big scary red box on the documentation for random: > Warning: > The pseudo-random generators of this module should not be used for > security purposes. For security or cryptographic uses, see the > secrets module. https://docs.python.org/3/library/random.html Signed-off-by: Dan Callahan <danc@element.io>	2021-05-14 10:58:46 +01:00

Author

SHA1

Message

Date

Dan Callahan

498084228b

Use Python's secrets module instead of random (#9984 )

Functionally identical, but more obviously cryptographically secure.
...Explicit is better than implicit?

Avoids needing to know that SystemRandom() implies a CSPRNG, and
complies with the big scary red box on the documentation for random:

> Warning:
>   The pseudo-random generators of this module should not be used for
>   security purposes. For security or cryptographic uses, see the
>   secrets module.

https://docs.python.org/3/library/random.html

Signed-off-by: Dan Callahan <danc@element.io>

2021-05-14 10:58:46 +01:00

1 Commits