1.6.1

• Make verification of 0000... msgHash a valid behavior; due to consensus failures
• Add TS types field to exports map by @jacogr in #66

Full Changelog: 1.6.0...1.6.1

1.6.0

• Expose utils: invert, hexToBytes, concatBytes
• Refactor Schnorr/BIP340 functionality by @brandonblack in #50
• Speedup non-BASE multiplyAndAddUnsafe by @brandonblack in #54
• Remove viral esModuleInterop option from tsconfig.
• Change utils.hashToPrivateKey algorithm

New Contributors

• @brandonblack made their first contribution in #50

Full Changelog: 1.5.5...1.6.0

1.5.5

• Fixed a bug in schnorr.verify when infinity point result was not checked properly
• schnorr.verify now throws less errors, instead, it returns false
• Made schnorr.sign 60% faster, schnorr.verify 90% faster

1.5.4

• recoverPublicKey improvements:
  • Fixed an issue where it recovered invalid points
  • Added isCompressed optional argument
  • Made it ~2x faster

1.5.3

• New algorithm for utils.randomPrivateKey()
• Added utils.hashToPrivateKey()
• Improved JacobianPoint#toAffine() check
• 5-10% speed-up

1.5.2

• Fix library compatibility with bad parsers over bigint syntax
• New exported utils.mod utility
• recoverPublicKey and Point.fromSignature now reduce msgHash modulo n
• Uint8Arrays are now always copied instead of using .slice() method of theirs
• Hex parsing improvements

1.5.0

• Messages in ECDSA sign() are now reduced modulo n to match RFC6979. Contributed by @kklash.
  • Note: libsecp256k1 is awaiting pull request for the same bugfix
• sign can now receive {extraEntropy: true} to auto-populate k with random data. This is strongly recommended, see README
• RFC6979 has been thoroughly refactored

1.4.0

• Important: signatures are now canonical: true by default. This mirrors libsecp256k1 behavior. If you'd like old (OpenSSL) behavior, use sign with canonical: false
• Important: verify() is now strict: true by default. High-s signatures are rejected, which also mirrors libsecp behavior.
• Important: removed string (hex) return type from public methods. Uint8Array is now always returned
• Added extraEntropy option to sign. It allows to specify k' as per RFC6979
• Added Signature#hasHighS() and Signature#normalizeS() methods
• Rewrite DER parsing logic
• Improve hex parsing security
• assertValidity is now done in Signature constructor, instead of a separate method
• Remove SignResult deprecated class that cloned Signature

Full Changelog: 1.3.4...1.4.0

Thanks to @hank121314 for contribution

1.3.3

• Add main/module fields to package.json to fix rollup/browserify

1.3.2

• Typescript support bugfix