pgsodium - what do you recommend instead?
Hey there!
Just researching how best to store particularly sensitive data per-user in a compliant way. (need to store bank number and sort code, for invoice generation)
I notice https://supabase.com/docs/guides/database/extensions/pgsodium is pending deprecation, what is recommended instead?
Thank you for your time on this!
1 Reply
Supabase's logic for the deprecation appears to be that given that the database is already stored "encrypted" (presumably meaning FDE), an additional layer of encryption is not needed for compliance.
Supabase announced to move Vault away from pgsodium (while keeping it available), and hence it doesn't appear that Vault itself is deprecated, even though the current version of Vault still relies on pgsodium.