All notable changes to this project will be documented in this file.
The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.
Ed25519ExpandedPrivateKey.signno longer takes apublicKeyargument. The previous API allowed the caller to control how the public key was cached in memory, but it created an opportunity for misuse: if two signatures were created using different public keys, the private scalar could be recovered from the signatures (see here and here for details). We now always cache the public key ourselves to provide a safer signing API.
Initial release!