fix: strengthen password security - increase bcrypt rounds to 14, add notNull constraint to password field, add pull_policy to docker-compose

2026-03-15 20:33:12 +00:00
parent 988c7ef6b5
commit 83d68b0c58
3 changed files with 3 additions and 2 deletions
--- a/src/routes/signup/+page.server.ts
+++ b/src/routes/signup/+page.server.ts
@@ -62,7 +62,7 @@ export const actions: Actions = {
 			return fail(400, { error: 'Username already taken', name, username });
 		}

-		const hashedPassword = await bcrypt.hash(password, 10);
+		const hashedPassword = await bcrypt.hash(password, 14);

 		await db.insert(users).values({
 			name: sanitizedName,