chore(deps): bump @forgesworn/ring-sig from 1.0.2 to 3.0.0

[dependabot]

Bumps @forgesworn/ring-sig from 1.0.2 to 3.0.0.

Release notes

Sourced from @​forgesworn/ring-sig's releases.

v3.0.0

3.0.0 (2026-03-30)

• fix!: reject non-canonical scalars >= curve order N in hexToScalar (8eddf4f)

BREAKING CHANGES

• hexToScalar now throws for values >= N instead of silently reducing. Prevents non-canonical signature encodings.

v2.0.0

2.0.0 (2026-03-25)

• feat!: upgrade to @​noble/curves v2 and @​noble/hashes v2 (8d9346f)

BREAKING CHANGES

• @​noble/curves upgraded from v1 to v2. Import paths now require .js suffix if consuming from source. Published dist/ is unaffected.

Changelog

Sourced from @​forgesworn/ring-sig's changelog.

3.0.0 (2026-03-30)

3.0.1 (2026-04-12)

Bug Fixes

• bump vite to 7.3.2 and picomatch to 4.0.4 (security) (deps)

• fix!: reject non-canonical scalars >= curve order N in hexToScalar (8eddf4f)

BREAKING CHANGES

• hexToScalar now throws for values >= N instead of silently reducing. Prevents non-canonical signature encodings.

2.0.0 (2026-03-25)

• feat!: upgrade to @​noble/curves v2 and @​noble/hashes v2 (8d9346f)

BREAKING CHANGES

• @​noble/curves upgraded from v1 to v2. Import paths now require .js suffix if consuming from source. Published dist/ is unaffected.

Commits

• ec4166f chore(release): 3.0.0 [skip ci]
• 8eddf4f fix!: reject non-canonical scalars >= curve order N in hexToScalar
• 127fe12 docs: add llms-full.txt, examples, expand topics
• a46c0ed chore(release): 2.0.0 [skip ci]
• 8d9346f feat!: upgrade to @​noble/curves v2 and @​noble/hashes v2
• 358e3b1 chore: add Lightning funding field for PkgZap
• 8e83c74 docs: add npub to README for bidirectional Nostr identity binding
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)