Stuck on an issue?
Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.
And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.
suggestion: replace asn1.js with any updated fork
See original GitHub issueDescribe the bug
Using jose will sometimes throw DeprecationWarning due to the fact that the dependency asn1.js is outdated and seems abandoned (the fix PR is open since march/2018).
Message
(node:29508) [DEP0005] DeprecationWarning: Buffer() is deprecated due to security and usability issues. Please use the Buffer.alloc(), Buffer.allocUnsafe(), or Buffer.from() methods instead.
Environment:
joseversion: 1.18.1- node version: v12.13.0
Some reading material
https://github.com/indutny/asn1.js/pull/116
https://github.com/indutny/asn1.js/pull/103
Issue Analytics
- State:
- Created 4 years ago
- Reactions:2
- Comments:6 (6 by maintainers)
Top Results From Across the Web
How to use the asn1.js.define function in asn1 - Snyk
To help you get started, we've selected a few asn1.js.define examples, ... Use Snyk Code to scan source code in minutes - no...
Read more >Not able to generate required data structure using asn1 compiler
I am converting NGAP asn1c to c data structure , i am able to compile all the file successfully , it generating ...
Read more >Upgrade from v0.6.1 to v1.17.0 (latest) - NodeBB
Hi, I have tried a way to upgrade my current version of NodeBB which is ... So, any technical recommendation or help is...
Read more >Discord.js-bycon NPM
This is the fork of the discord.js package with the support of user accounts (in discord.js that support was removed with the version...
Read more >Vulnerabilities - OpenSSL
All OpenSSL 1.1.1 versions are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1k. OpenSSL 1.0.2 is not impacted...
Read more >
Top Related Medium Post
No results found
Top Related StackOverflow Question
No results found
Troubleshoot Live Code
Lightrun enables developers to add logs, metrics and snapshots to live code - no restarts or redeploys required.
Start Free
Top Related Reddit Thread
No results found
Top Related Hackernoon Post
No results found
Top Related Tweet
No results found
Top Related Dev.to Post
No results found
Top Related Hashnode Post
No results found
@tabarra so i went ahead, forked asn1.js and removed all its dependencies, including
bn.jsin favour ofBigIntThe
1.23.0release from yesterday already uses it - see https://bundlephobia.com/result?p=jose@1.23.0I replied to the tweet thread again, but at this point it’s out of my hands.