Bump @noble/curves from 1.9.1 to 1.9.2

[dependabot]

Bumps @noble/curves from 1.9.1 to 1.9.2.

Release notes

Sourced from @​noble/curves's releases.

1.9.2

The release contains bugfixes and a few improvements which pave the way for upcoming v2.0.

• edwards, weierstrass: big refactor, implement much simpler ECDSA / EdDSA API. paulmillr/noble-curves#192
  • Old code is still working until v2
  • New API is experimental until next patch release
  • toRawBytes => toBytes
  • ExtendedPoint, ProjectivePoint => Point
  • Point now has Fp and Fn static properties which are its fields
• weierstrass: add support for ECDSA with cofactor>1 curves
• weierstrass: add support for points having x:0
• bls: big refactor, improve types, add new bls.longSignatures and bls.shortSignatures APIs
  • Old code is still working until v2
  • New API is experimental until next patch release
• utils: reuse noble-hashes utils
• Use randomBytes and hmac from noble-hashes by default

Sensitive code changes

• edwards, weierstrass: refactor logic for range checks
• weierstrass: improve sign() logic for k generation
• weierstrass: harden multiplyUnsafe, stop using multiplyAndAddUnsafe

New contributors

• Add a test that BLS12-381 augmented signatures can be verified by @​randombit in paulmillr/noble-curves#191

Full Changelog: paulmillr/noble-curves@1.9.1...1.9.2

Commits

• 7932e34 Release 1.9.2.
• dd85852 Move benchmark dir
• 94bfcc1 weierstrass: use one toBytes in sigs (internal for now)
• 03fdca2 test: update import
• 464599a test: improve h2c tests
• 451255e Refactor tests
• 29c12fa test: move vectors into one subdir
• d19cf79 weierstrass: remove comment
• 990ac9a weierstrass: accept points with x:0 as valid
• b5e74d6 Merge pull request #192 from paulmillr/ecdsa-eddsa
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)