go to bug id or search bugs for
argon2i is pretty nice for password hashing, true but it has some problems with memory/computation tradeoffs, wouldnt it be epic to have argon2id in the next version (as PHP7.2 is already frozen) to have a hybrid which goes both against side channels and tradeoff attacks?
in fact the ietf draft for argon2 recommends using argon2id as default.
Add a Patch
Add a Pull Request