We currently offers our users the ability to encrypt setting values through the interface. The algorithm we use (AES-ECB) has been flagged as a vulnerability by our analyzer. While we're as is, we think it is important to kill the noise and provide a better encryption algorithm to our users.
- Add support for AES-GCM encryption algorithm and encrypt new value in AES-GCM.
- Continue to support decryption of AES-ECB encrypted values and drop AES-ECB in new encryption.