2.0.0 / 2014-06-18
==================

 * use uid-safe
 * use base64-url
 * remove sync `.secret()`, use `.secretSync()` instead

1.0.4 / 2014-06-11
==================

 * make sure CSRF tokens are URL safe