Removed the 'crypto' dependency #2478

3bl3gamer · 2022-06-06T08:40:46Z

The crypto module brings a huge amount of code to the browser build and it's removal reduces the build size by 400 KiB or by 25%.

The crypto.randomBytes Generates cryptographically strong pseudorandom data. That strength is not needed since these hex strings are used only as ids/classes in the generated HTML.

This change may cause test fails for some users, but this can be fixed by stubbing Math.random.

Another option would be to generate sequential IDs:

let lastId = -1
export default function genStringId() {
  lastId += 1
  return lastId+''
}

This won't cause problems with tests but may reveal the amount of e-mails generated by some application (if used on the server side).

3bl3gamer · 2022-06-06T08:46:46Z

BundleAnalyzerPlugin output for comparison. Before:

After:

iRyusa · 2022-07-08T13:16:34Z

I'll try to get this in 4.13.1

iRyusa · 2022-08-02T16:03:01Z

@3bl3gamer Can you resolve those conflicts i'd like to release this next week ?

3bl3gamer · 2022-08-27T13:50:02Z

@iRyusa sorry for the delay, resolved.

F21 · 2022-10-11T08:26:48Z

Any chance this can be merged soon?

3bl3gamer mentioned this pull request Jun 6, 2022

Browser build size and required deprecations #2479

Open

Removed the 'crypto' dependency

cf686a6

3bl3gamer force-pushed the master branch from 27f77ec to cf686a6 Compare June 12, 2022 07:53

iRyusa approved these changes Jul 8, 2022

View reviewed changes

Merge remote-tracking branch 'upstream/master'

7dea5b7

enac21 mentioned this pull request Oct 11, 2022

[ERROR] Secure random number generation... Boostport/mjml-go#5

Closed

iRyusa merged commit e03c580 into mjmlio:master Nov 15, 2022

Provide feedback