alternative entropy method

[chunningham]

What is the scope of the feature
A better method for generating entropy (easier for the user/more secure)

Additional important information
hardware based is better, ideally without user input

[chunningham]

perhaps https://github.com/mvayngrib/react-native-randombytes

[mnzaki]

https://github.com/mvayngrib/react-native-randombytes is kinda wonky.
It uses callbacks and not promises (so needs awkward wrapping) and adds an extra unnecessary dependency on https://github.com/bitwiseshiftleft/sjcl which it falls back to if you use the sync API (calling it without a callback param)

So, I suggest this instead: https://github.com/rh389/react-native-securerandom
it's slightly smaller, simpler, and more straightforward

[chunningham]

Ah yes, I came across that and had a look. I also preferred it but I thought that maybe randombytes was more established/less at risk of becoming abandonware. I'm happy to use securerandom though

[mnzaki]

Ok so react-native-securerandom has its own set of problems (package is not transpiled, and includes a .babelrc which is messing with our build system, and also the developer is not active). Back to randombytes but I'm going to ignore all their JS code and just add a small util that uses the NativeModule directly