Have any recent audits been completed on the open source packages used by passbolt? In particular I’m curious about openpgp.js. I found this one alarming audit from several years ago, and I’m curious if there’s a more up to date version available since this package is at the core of passbolt’s security.