JSON Web Token (JWT; RFC 7519) formats.
The JSON Web Signature (JWS; RFC 7515) implementation is complete.
EdDSA signatures (RFC 8037) are supported (Ed25519 only).
JWK Thumbprint (RFC 7638) is supported (requires /aeson/ >= 0.10).
JSON Web Encryption (JWE; RFC 7516) is not yet implemented.
The ECDSA implementation is vulnerable to timing attacks and should only be
used for verification.