Initial Signet security audit going well. Found a couple issues high priority issues but nothing I would consider critical. Once I address the issues, I expect a 25%-50% improvement in memory and resource allocation so things should be even snappier, and of course, a bit more secure.
The biggest failing in my book though is that when I upgraded key encryption from what nsecbunkerd was doing, I only upgraded from AES-256-CBS to AES-256-GCM. It's a definite improvement, but I will migrate to the NIP-49 XChaCha20-Poly1305 standard at some point since I'm a fan of strict spec compliance an it really is a much simpler algorithm. Once I get there, there will be no need for user interaction, I'll probably just do it on the backend on first key unlock and let users know the migration is happening.
With that said, I expect Signet 1.5.1 to be out sometime tomorrow :-)
