Changelog
[1.1.3] 2026-05-26 Added (6)
Added
- Test suite. Vitest covering round-trip encrypt/decrypt across primitives, objects, arrays, unicode, very-long inputs, and the empty-string boundary; the explicit-driver overload (
AES,TripleDES); known-answer vectors formd5/sha1/sha256/sha512; configuration-default semantics; and decrypt failure modes (wrong key, malformed cipher, empty string). - README with a prominent security notice spelling out the threat model: these helpers wrap
crypto-js’s passphrase-keyed AES-CBC + OpenSSL-style MD5 KDF; ciphertext is not authenticated;md5/sha1are not collision-resistant. Includes explicit “use for” / “do NOT use for” lists. - CHANGELOG,
llms.txt,llms-full.txt, and askills/folder (README,overviewwith a security-boundaries section,encrypt-decrypt,hashes,configuration,recipes) for tool-assisted development. vitest.config.tswith thenodeenvironment and the self-detecting sibling-alias pattern used elsewhere in the workspace.- CI. GitHub Actions workflow: Node 18/20/22 × Ubuntu, plus Node 20 × Windows.
package.jsonpolish.sideEffects: false, sharperdescription, expandedkeywords,vitestandtypescriptdev-dependencies,test/test:watchscripts.
Tests
30 passing