NIST says you better dump weak SHA-1 ... by 2030