Skip to content

3.x - security: replace unencrypted cookie auth tokens with verified, work-factor-bounded HMAC-SHA256 tokens#806

Merged
markstory merged 3 commits into
3.xfrom
backport-805
Jul 8, 2026
Merged

3.x - security: replace unencrypted cookie auth tokens with verified, work-factor-bounded HMAC-SHA256 tokens#806
markstory merged 3 commits into
3.xfrom
backport-805

Conversation

@markstory

Copy link
Copy Markdown
Member

Backport of #805 to 3.x

@markstory markstory merged commit a96a198 into 3.x Jul 8, 2026
6 of 8 checks passed
@markstory markstory deleted the backport-805 branch July 8, 2026 22:07
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants