sorcery-argon2 1.1.0 → 1.2.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 66cf6c091bc62b52c3d116f74eaad64fa58f68bf653a594e94de25b1059c90f7
-  data.tar.gz: bb6d2f484aa5637d43db502cb6d7052ef638f053a7ffcb1668c7ec5b635d93dc
+  metadata.gz: 0e4215adcc0a57d9fcc8071040414837e73050e632408e6abc5ee21dd3a23730
+  data.tar.gz: 94f1747cfcde31199ccd8eca3a6b4a8224e6f60b7f20e7480ef30f572a1822fe
 SHA512:
-  metadata.gz: f21655796b2a974eb938da13f3494f0f1eec7bf309471cf38e4e4f26c6df9ff62a33b6fa0c1e6452e62c624301919d8764e17fd26cf5cbc655d2e9775cc50af6
-  data.tar.gz: 66904eb1885506237db41426bddc91b98005bc8673a88bcfb061e7e77f9c46313bbd8400e77e78529511bfcfe5f488ab837c0db8e0dbd3d301241aab8e79fe4a
+  metadata.gz: b6dfb414d7f24c4b710184c8bdcf35490d9ed29decde5090575421fddb88813dc62beac0755a5b2f5f0528e33e82600f7908812e87f8e2e36f9030e365ec5a21
+  data.tar.gz: 985ba0f248274fd28acb7b0e9d62029b8b93eaaf755561e36d358ff0bdb6fe9dfa4e1cbcbbfc6e165b1ac4a90704377d2e94190f525e7cb4087dca4829fe83cb

data/.github/workflows/codeql.yml

@@ -0,0 +1,74 @@
+# For most projects, this workflow file will not need changing; you simply need
+# to commit it to your repository.
+#
+# You may wish to alter this file to override the set of languages analyzed,
+# or to provide custom queries or build logic.
+#
+# ******** NOTE ********
+# We have attempted to detect the languages in your repository. Please check
+# the `language` matrix defined below to confirm you have the correct set of
+# supported CodeQL languages.
+#
+name: "CodeQL"
+
+on:
+  push:
+    branches: [ "master" ]
+  pull_request:
+    # The branches below must be a subset of the branches above
+    branches: [ "master" ]
+  schedule:
+    - cron: '34 3 * * 3'
+
+jobs:
+  analyze:
+    name: Analyze
+    runs-on: ubuntu-latest
+    permissions:
+      actions: read
+      contents: read
+      security-events: write
+
+    strategy:
+      fail-fast: false
+      matrix:
+        language: [ 'ruby' ]
+        # CodeQL supports [ 'cpp', 'csharp', 'go', 'java', 'javascript', 'python', 'ruby' ]
+        # Learn more about CodeQL language support at https://aka.ms/codeql-docs/language-support
+
+    steps:
+    - name: Checkout repository
+      uses: actions/checkout@v3
+
+    # Initializes the CodeQL tools for scanning.
+    - name: Initialize CodeQL
+      uses: github/codeql-action/init@v2
+      with:
+        languages: ${{ matrix.language }}
+        # If you wish to specify custom queries, you can do so here or in a config file.
+        # By default, queries listed here will override any specified in a config file.
+        # Prefix the list here with "+" to use these queries and those in the config file.
+
+        # Details on CodeQL's query packs refer to : https://docs.github.com/en/code-security/code-scanning/automatically-scanning-your-code-for-vulnerabilities-and-errors/configuring-code-scanning#using-queries-in-ql-packs
+        # queries: security-extended,security-and-quality
+
+
+    # Autobuild attempts to build any compiled languages  (C/C++, C#, Go, or Java).
+    # If this step fails, then you should remove it and run the build manually (see below)
+    - name: Autobuild
+      uses: github/codeql-action/autobuild@v2
+
+    # ℹ️ Command-line programs to run using the OS shell.
+    # 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun
+
+    #   If the Autobuild fails above, remove it and uncomment the following three lines.
+    #   modify them (or add more) to build your code if your project, please refer to the EXAMPLE below for guidance.
+
+    # - run: |
+    #   echo "Run, Build Application using script"
+    #   ./location_of_script_within_repo/buildscript.sh
+
+    - name: Perform CodeQL Analysis
+      uses: github/codeql-action/analyze@v2
+      with:
+        category: "/language:${{matrix.language}}"

data/.github/workflows/ruby.yml

@@ -17,6 +17,8 @@ jobs:
           - 2.6
           - 2.7
           - 3.0
+          - 3.1
+          - 3.2
           - head
 
     runs-on: ${{ matrix.os }}-latest
@@ -37,6 +39,12 @@ jobs:
         run: bin/test
       - name: Run tests
         run: bundle exec rake test
+      - name: Coveralls Parallel
+        uses: coverallsapp/github-action@master
+        with:
+          github-token: ${{ secrets.GITHUB_TOKEN }}
+          flag-name: run-${{ matrix.ruby-version }}
+          parallel: true
 
   rubocop:
 
@@ -52,7 +60,6 @@ jobs:
     - name: Run rubocop
       run: bundle exec rake rubocop
 
-# TODO: Add code coverage testing (coveralls)
 # TODO: Add documentation/maintainability testing?
 # TODO: Add dependency testing? (bundle audit)
 
@@ -60,5 +67,10 @@ jobs:
     runs-on: ubuntu-latest
     needs: [ test_matrix, rubocop ]
     steps:
+      - name: Coveralls Finished
+        uses: coverallsapp/github-action@master
+        with:
+          github-token: ${{ secrets.GITHUB_TOKEN }}
+          parallel-finished: true
       - name: Wait for status checks
         run: echo "All Green!"

data/.rubocop.yml

@@ -214,8 +214,6 @@ Style/RedundantArgument: # (new in 1.4)
   Enabled: true
 Style/SwapValues: # (new in 1.1)
   Enabled: true
-Gemspec/DateAssignment: # (new in 1.10)
-  Enabled: true
 Lint/DeprecatedConstants: # (new in 1.8)
   Enabled: true
 Lint/LambdaWithoutLiteralBlock: # (new in 1.8)
@@ -238,3 +236,83 @@ Style/IfWithBooleanLiteralBranches: # (new in 1.9)
   Enabled: true
 Style/StringChars: # (new in 1.12)
   Enabled: true
+Gemspec/DeprecatedAttributeAssignment: # new in 1.30
+  Enabled: true
+Gemspec/RequireMFA: # new in 1.23
+  Enabled: true
+Layout/LineContinuationLeadingSpace: # new in 1.31
+  Enabled: true
+Layout/LineContinuationSpacing: # new in 1.31
+  Enabled: true
+Layout/LineEndStringConcatenationIndentation: # new in 1.18
+  Enabled: true
+Lint/AmbiguousOperatorPrecedence: # new in 1.21
+  Enabled: true
+Lint/AmbiguousRange: # new in 1.19
+  Enabled: true
+Lint/ConstantOverwrittenInRescue: # new in 1.31
+  Enabled: true
+Lint/DuplicateMagicComment: # new in 1.37
+  Enabled: true
+Lint/EmptyInPattern: # new in 1.16
+  Enabled: true
+Lint/IncompatibleIoSelectWithFiberScheduler: # new in 1.21
+  Enabled: true
+Lint/NonAtomicFileOperation: # new in 1.31
+  Enabled: true
+Lint/RefinementImportMethods: # new in 1.27
+  Enabled: true
+Lint/RequireRangeParentheses: # new in 1.32
+  Enabled: true
+Lint/RequireRelativeSelfPath: # new in 1.22
+  Enabled: true
+Lint/UselessRuby2Keywords: # new in 1.23
+  Enabled: true
+Naming/BlockForwarding: # new in 1.24
+  Enabled: true
+Security/CompoundHash: # new in 1.28
+  Enabled: true
+Security/IoMethods: # new in 1.22
+  Enabled: true
+Style/EmptyHeredoc: # new in 1.32
+  Enabled: true
+Style/EnvHome: # new in 1.29
+  Enabled: true
+Style/FetchEnvVar: # new in 1.28
+  Enabled: true
+Style/FileRead: # new in 1.24
+  Enabled: true
+Style/FileWrite: # new in 1.24
+  Enabled: true
+Style/InPatternThen: # new in 1.16
+  Enabled: true
+Style/MagicCommentFormat: # new in 1.35
+  Enabled: true
+Style/MapCompactWithConditionalBlock: # new in 1.30
+  Enabled: true
+Style/MapToHash: # new in 1.24
+  Enabled: true
+Style/MultilineInPatternThen: # new in 1.16
+  Enabled: true
+Style/NestedFileDirname: # new in 1.26
+  Enabled: true
+Style/NumberedParameters: # new in 1.22
+  Enabled: true
+Style/NumberedParametersLimit: # new in 1.22
+  Enabled: true
+Style/ObjectThen: # new in 1.28
+  Enabled: true
+Style/OpenStructUse: # new in 1.23
+  Enabled: true
+Style/OperatorMethodCall: # new in 1.37
+  Enabled: true
+Style/QuotedSymbols: # new in 1.16
+  Enabled: true
+Style/RedundantInitialize: # new in 1.27
+  Enabled: true
+Style/RedundantSelfAssignmentBranch: # new in 1.19
+  Enabled: true
+Style/RedundantStringEscape: # new in 1.37
+  Enabled: true
+Style/SelectByRegexp: # new in 1.22
+  Enabled: true

data/CHANGELOG.md

@@ -4,6 +4,10 @@ Historical changelog for all versions.
 
 ## HEAD
 
+## v1.2.0
+
+* Synced with latest upstream changes (technion/ruby-argon2 `v2.2.0`)
+
 ## v1.1.0
 
 * Added support for passing parallelism cost to `Argon2::Password.create`

data/MAINTAINING.md

@@ -59,7 +59,7 @@ NOTE: `X.Y.Z` and `vX.Y.Z` are given as examples, and should be replaced with
    1. `git commit -m "Release vX.Y.Z"`
 1. Ensure all tests are passing
    1. `./bin/setup`
-   1. `./bin/test`
+   1. `./bin/test` (you may need to install clang, e.g. `sudo apt install clang`)
    1. `rake default`
 1. Build the Gem
    1. `gem build`

data/README.md

@@ -1,20 +1,28 @@
 # Argon2 - Ruby Wrapper
 
-Forked from [technion/ruby-argon2](https://github.com/technion/ruby-argon2) aka
-the `argon2` gem, `v2.0.3`. See below for a migration guide if you would like to
-move an existing application from `argon2` to `sorcery-argon2`.
+A ruby wrapper for the Argon2 password hashing algorithm.
 
-[Why was `argon2` forked?](https://github.com/technion/ruby-argon2/pull/44#issuecomment-816271661)
+*This is an independent project, and not official from the PHC team.*
+
+This gem provides a 1:1 replacement for the `argon2` gem, with various
+improvements. Want to know more about why `argon2` was forked?
+[Read more](#why-fork-argon2)
+
+Wish to upgrade an existing application to use the improved API?
+[Migration guide](#migrating-from-argon2-to-sorcery-argon2)
+
+This fork is kept up-to-date with `argon2`, latest sync: `argon2 - v2.2.0`
 
 ## Table of Contents
 
 1. [Useful Links](#useful-links)
 2. [API Summary](#api-summary)
 3. [Installation](#installation)
-4. [Migrating from `argon2` to `sorcery-argon2`](#migrating-from-argon2-to-sorcery-argon2)
-5. [Contributing](#contributing)
-6. [Contact](#contact)
-7. [License](#license)
+4. [Why fork `argon2`?](#why-fork-argon2)
+5. [Migrating from `argon2` to `sorcery-argon2`](#migrating-from-argon2-to-sorcery-argon2)
+6. [Contributing](#contributing)
+7. [Contact](#contact)
+8. [License](#license)
 
 ## Useful Links
 
@@ -93,13 +101,146 @@ Require Sorcery-Argon2 in your project:
 require 'argon2'
 ```
 
+## Why fork `argon2`?
+
+While implementing Argon2 support in Sorcery v1, I noticed that the current
+ruby wrapper (`argon2` - [technion/ruby-argon2](https://github.com/technion/ruby-argon2))
+had some questionable design decisions, and attempted to address them through a
+pull request. The sole maintainer of the gem rejected these changes summarily,
+without pointing out any specific concerns other than not understanding why the
+changes were necessary. This lead to me ([@joshbuker](https://github.com/joshbuker))
+being directed to create a fork instead:
+[technion/ruby-argon2#44](https://github.com/technion/ruby-argon2/pull/44#issuecomment-816271661)
+
+### Why should I trust this fork?
+
+You shouldn't trust this code more than you trust any other open source project.
+It's written by someone you don't know, and even if there is no malicious
+intent, there is no guarantee that the code is secure. Open source security is
+driven by having the community vett popular libraries, and discovering flaws
+through the sheer number of intelligent community members looking at the code.
+
+That being said, the original library `argon2` also falls under the same
+category. Ultimately, it was also written by a single person and is not
+thoroughly vetted by the community at the time of writing. A community member
+([@joshbuker](https://github.com/joshbuker), in this case) finding flaws in the
+implementation, and the fixes being rejected from upstream, is how this fork
+came into being.
+
+### What are the changes, why are they necessary?
+
+The Argon2::Password interface was, to put it bluntly, poorly executed in the
+original library. The Password class instance was not a representation of an
+Argon2 password as one would expect, but instead an unnecessary abstraction
+layer used to store the settings passed to the underlying Argon2 C Library. This
+not only led to an overly complicated method of generating Argon2 hashes, but
+also meant that the class could not be used to read data back out of an Argon2
+digest.
+
+Originally, to generate an Argon2 hash/digest, one would have to do the
+following:
+
+```ruby
+# Create an instance of the Argon2::Password class to store your options:
+instance = Argon2::Password.new(t_cost: 4, m_cost: 16)
+# Use this instance to generate the hash by calling create:
+instance.create(password)
+    => "$argon2i$v=19$m=65536,t=2,p=1$jL7lLEAjDN+pY2cG1N8D2g$iwj1ueduCvm6B9YVjBSnAHu+6mKzqGmDW745ALR38Uo"
+```
+
+Not only is this abstraction step unnecessary, it opens up a new way for
+developers to make a security mistake. New salts are only generated on the
+creation of a new Argon2::Password instance, meaning if you reuse the instance,
+those passwords will share the same salt.
+
+```ruby
+instance = Argon2::Password.new(t_cost: 4, m_cost: 16)
+# digest1 and digest2 will share the same salt:
+digest1 = instance.create(password1)
+digest2 = instance.create(password2)
+```
+
+Also, because of how the instance of Argon2::Password was designed, it cannot be
+used for reading information back out of an Argon2::Password. This is a summary
+of the original Argon2::Password API:
+
+```ruby
+# Class methods
+Argon2::Password.create(password) # Uses the default options to create a digest
+Argon2::Password.valid_hash?(digest)
+Argon2::Password.verify_password(password, digest, pepper = nil)
+
+# Instance Methods
+argon2 = Argon2::Password.new(options = {}) # Purely for storing options
+argon2.create(password) # Take the options and generate an Argon2 digest
+```
+
+Compare this with `sorcery-argon2`:
+
+```ruby
+# Class methods
+Argon2::Password.create(password, options = {}) # Same as before but accepts passing options
+Argon2::Password.valid_hash?(digest)
+Argon2::Password.verify_password(password, digest, pepper = nil)
+
+# Instance Methods
+argon2 = Argon2::Password.new(digest) # Now represents an Argon2 digest
+argon2 == other_argon2 # Which can be compared with `==` against other Argon2::Password instances
+argon2.matches?(password, pepper = nil) # Or against the original password
+argon2.to_s   # Returns the digest as a String
+argon2.to_str # Also returns the digest as a String
+
+# Argon2::Password Attributes (readonly)
+argon2.digest
+argon2.variant
+argon2.version
+argon2.t_cost
+argon2.m_cost
+argon2.p_cost
+argon2.salt
+argon2.checksum
+```
+
+Another minor issue is that all library errors fall to a single non-descriptive
+class:
+
+```ruby
+Argon2::ArgonHashFail
+```
+
+Compare with `sorcery-argon2`:
+
+```ruby
+Argon2::Error # Replaces `Argon2::ArgonHashFail`
+
+# The following errors all inherit from Argon2::Error, and allow you to catch
+# specifically the error you're interested in:
+Argon2::Errors::InvalidHash
+Argon2::Errors::InvalidVersion
+Argon2::Errors::InvalidCost
+Argon2::Errors::InvalidTCost
+Argon2::Errors::InvalidMCost
+Argon2::Errors::InvalidPCost
+Argon2::Errors::InvalidPassword
+Argon2::Errors::InvalidSaltSize
+Argon2::Errors::InvalidOutputLength
+Argon2::Errors::ExtError
+```
+
+Finally, the original library documentation is not only incomplete, but
+straight up broken/inaccurate in some areas. `sorcery-argon2` has fixed these
+issues, and has 100% documentation of the API.
+
+* [`argon2` Documentation](https://rubydoc.info/gems/argon2)
+* [`sorcery-argon2` Documentation](https://rubydoc.info/gems/sorcery-argon2)
+
 ## Migrating from `argon2` to `sorcery-argon2`
 
 There are two primary changes going from `argon2` to `sorcery-argon2`:
 
 ### The Argon2::Password API has been refactored
 
-**Argon2::Password.new and Argon2::Password.create are now different.**
+*Argon2::Password.new and Argon2::Password.create are now different.*
 
 Argon2::Passwords can now be created without initializing an instance first.
 
@@ -115,11 +256,11 @@ instance.create(input_password)
 Argon2::Password.create(input_password, m_cost: some_m_cost)
 ```
 
-**Argon2::Password.create no longer accept custom salts.**
+*Argon2::Password.create no longer accepts custom salts.*
 
-You should not be providing your own salt to the Argon2 algorithm (it does it
-for you). Previously you could pass an option of `salt_do_not_supply`, which has
-been removed in `sorcery-argon2 - v1.0.0`.
+You should not be providing your own salt to the Argon2 algorithm (this library
+does it for you). Previously you could pass an option of `salt_do_not_supply`,
+which has been removed in `sorcery-argon2 - v1.0.0`.
 
 ### The errors have been restructured
 
@@ -156,7 +297,7 @@ Feel free to ask questions using these contact details:
 
 **Current Maintainers:**
 
-* Josh Buker ([@athix](https://github.com/athix)) | [Email](mailto:crypto+sorcery@joshbuker.com?subject=Sorcery)
+* Josh Buker ([@joshbuker](https://github.com/joshbuker)) | [Email](mailto:crypto+sorcery@joshbuker.com?subject=Sorcery)
 
 ## License
 

data/bin/setup

@@ -10,5 +10,6 @@ git submodule update --init --recursive
 # Build the Argon2 C Library. Git submodules must be initialized first!
 bundle install
 cd ext/argon2_wrap/
+ruby extconf.rb
 make
 cd ../..

data/ext/argon2_wrap/{Makefile → Makefile.real}

@@ -60,6 +60,7 @@ LIB_SH := lib$(LIB_NAME).$(LIB_EXT)
 all: libs 
 libs: $(SRC)
 		$(CC) $(CFLAGS) $(LIB_CFLAGS) $^ -o libargon2_wrap.$(LIB_EXT)
+		cp libargon2_wrap.$(LIB_EXT) ../../lib
 
 #Deliberately avoiding the CFLAGS for our test cases - disable optimise and
 #C89

data/ext/argon2_wrap/extconf.rb

@@ -1,2 +1,5 @@
 # frozen_string_literal: true
-#I must admit I have no understanding of why this empty file works.
+
+require 'mkmf'
+
+File.rename('Makefile.real', 'Makefile')

data/lib/argon2/password.rb

@@ -27,10 +27,25 @@ module Argon2
     # Used to validate the maximum acceptable parallelism cost
     MAX_P_COST = 8
     # The complete Argon2 digest string (not to be confused with the checksum).
+    #
+    # For a detailed description of the digest format, please see:
+    # https://github.com/P-H-C/phc-string-format/blob/master/phc-sf-spec.md
     attr_reader :digest
-    # The hash portion of the stored password hash.
+    # The hash portion of the stored password hash. This is Base64 encoded by
+    # default.
     attr_reader :checksum
-    # The salt of the stored password hash.
+    # The salt of the stored password hash. This is Base64 encoded by default.
+    #
+    # To retrieve the original salt:
+    #
+    #    require 'base64'
+    #
+    #    argon2 = Argon2::Password.new(digest)
+    #
+    #    argon2.salt
+    #    => Base64 encoded salt
+    #    Base64.decode64(argon2.salt)
+    #    => original salt
     attr_reader :salt
     # Variant used (argon2i / argon2d / argon2id)
     attr_reader :variant

data/lib/argon2/version.rb

@@ -4,5 +4,5 @@ module Argon2
   ##
   # Standard Gem version constant.
   #
-  VERSION = '1.1.0'
+  VERSION = '1.2.0'
 end

data/sorcery-argon2.gemspec

@@ -25,7 +25,8 @@ Gem::Specification.new do |s|
     'bug_tracker_uri' => "#{repo_url}/issues",
     'changelog_uri' => "#{repo_url}/releases/tag/v#{version}",
     'documentation_uri' => 'https://rubydoc.info/gems/sorcery-argon2',
-    'source_code_uri' => "#{repo_url}/tree/v#{version}"
+    'source_code_uri' => "#{repo_url}/tree/v#{version}",
+    'rubygems_mfa_required' => 'true'
   }
 
   s.files = `git ls-files -z`.split("\x0").reject { |f| f.match(%r{^(test|spec|features)/}) }
@@ -35,7 +36,7 @@ Gem::Specification.new do |s|
   s.executables   = s.files.grep(%r{^exe/}) { |f| File.basename(f) }
   s.require_paths = ['lib']
 
-  s.add_dependency 'ffi',          '~> 1.14'
+  s.add_dependency 'ffi',          '~> 1.15'
   s.add_dependency 'ffi-compiler', '~> 1.0'
 
   # Gems required for testing the wrapper locally.

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: sorcery-argon2
 version: !ruby/object:Gem::Version
-  version: 1.1.0
+  version: 1.2.0
 platform: ruby
 authors:
 - Josh Buker
 autorequire: 
 bindir: exe
 cert_chain: []
-date: 2021-04-09 00:00:00.000000000 Z
+date: 2023-02-28 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: ffi
@@ -16,14 +16,14 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '1.14'
+        version: '1.15'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '1.14'
+        version: '1.15'
 - !ruby/object:Gem::Dependency
   name: ffi-compiler
   requirement: !ruby/object:Gem::Requirement
@@ -134,6 +134,7 @@ files:
 - ".github/ISSUE_TEMPLATE/feature_request.md"
 - ".github/ISSUE_TEMPLATE/need_help.md"
 - ".github/PULL_REQUEST_TEMPLATE.md"
+- ".github/workflows/codeql.yml"
 - ".github/workflows/ruby.yml"
 - ".gitignore"
 - ".gitmodules"
@@ -149,7 +150,7 @@ files:
 - bin/console
 - bin/setup
 - bin/test
-- ext/argon2_wrap/Makefile
+- ext/argon2_wrap/Makefile.real
 - ext/argon2_wrap/argon_wrap.c
 - ext/argon2_wrap/extconf.rb
 - ext/argon2_wrap/libargon2_wrap.so
@@ -247,9 +248,10 @@ licenses:
 - MIT
 metadata:
   bug_tracker_uri: https://github.com/sorcery/argon2/issues
-  changelog_uri: https://github.com/sorcery/argon2/releases/tag/v1.1.0
+  changelog_uri: https://github.com/sorcery/argon2/releases/tag/v1.2.0
   documentation_uri: https://rubydoc.info/gems/sorcery-argon2
-  source_code_uri: https://github.com/sorcery/argon2/tree/v1.1.0
+  source_code_uri: https://github.com/sorcery/argon2/tree/v1.2.0
+  rubygems_mfa_required: 'true'
 post_install_message: 
 rdoc_options: []
 require_paths:
@@ -265,7 +267,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.1.2
+rubygems_version: 3.2.3
 signing_key: 
 specification_version: 4
 summary: A Ruby wrapper for the Argon2 Password hashing algorithm