Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Always return a boolean from NodeRSA.isPrivate
Currently, the `NodeRSA.isPrivate` method returns the `d` component of the key when the key is indeed a private key. Obviously, this result is truthy and hence does the job. However, I would classify it as a security risk since the name `isPrivate` raises the expectation that the result is a boolean and hence can safely be sent over the wire. This might leak the most private part of the key though, which would most likely be a disaster.
- Loading branch information