Vulnerability Issues

[uma-uc]

The audit of rxdb and rxdb-premium dependencies is causing the following:

• Critical rxdb-premium Elliptic's private key extraction in ECDSA upon signing a malformed input
• high rxdb ws affected by a DoS when handling a request with many HTTP headers
• high rxdb-premium secp256k1-node allows private key extraction over ECDH

[pubkey]

These issues are just reported but if you check you see that RxDB uses non of the affected features. For example we do not use secp256k1 to create private keys at all or to have anything in there that could be extracted. Same goes for most regex-DOS vulnerabilities.
PRs are welcomed.