Skip to content

Latest commit

 

History

History
234 lines (109 loc) · 8.79 KB

File metadata and controls

234 lines (109 loc) · 8.79 KB

Changelog

All notable changes to this project will be documented in this file. See commit-and-tag-version for commit guidelines.

1.1.3 (2026-06-25)

Refactor

  • aead: enforce plaintext size limits (e9ebab5)
  • context: bound sequence counter by nonce size (7d577c0)
  • dhkem: centralize KDF stage handling (26c50b0)

1.1.2 (2026-06-11)

Refactor

  • avoid copying/slicing buffersource inputs before subtle() (afc7ad3), closes #38
  • avoid HKDF empty-salt HMAC key re-import (e560e1e)
  • avoid HKDF PRK re-import on subsequent Expand calls (d67626d)
  • generate non-extractable ephemeral keys in hybrid KEM encapsulation (ef79333)
  • validate two-stage KDF Export length limit of 255*Nh upfront (08ddc98)

1.1.1 (2026-05-15)

Documentation

  • add a caution block to the ML-KEM-512 export (bde2f68)
  • update examples (cd67c2f)

Refactor

  • avoid AEAD key re-import on subsequent Context.Open/Seal (c36c54c)
  • cache ASCII label encodings at module scope (20eedf2)
  • inline ComputeNonce and drop xor helper (772ca09)
  • NIST curve DeserializePrivateKey and DeriveKeyPair optimizations (11b6c55)

1.1.0 (2026-03-31)

Features

  • add Web Cryptography-based TurboSHAKE KDF exports (a29413b)

1.0.6 (2026-03-04)

Fixes

  • build script munching unintended symbols (b76a031)

1.0.5 (2026-03-04)

Refactor

  • align internal naming with HPKE spec conventions (a926ca1)

Documentation

  • add links to IETF spec sections (0bcfdb3)

1.0.4 (2026-02-16)

Refactor

  • account for an upcoming Web Cryptography change (8503c7d)

1.0.3 (2025-12-21)

Fixes

  • align main and noble release versions and deps (82d8d2b)

1.0.2 (2025-12-21)

Refactor

1.0.1 (2025-12-05)

Documentation

  • variety of JSDoc updates (b2cbf82)

1.0.0 (2025-12-02)

Refactor

  • rename package, it is now just "hpke" (2996ad8)

0.4.4 (2025-12-02)

Refactor

  • add additional assertValidity checks to the noble implementations (e46795a)
  • perform the same operation regardless of byte values in checkNotAllZeros (15f79d5)

0.4.3 (2025-11-30)

Fixes

  • don't fall for Node's Buffer.prototype.slice (fa4c166)

0.4.2 (2025-11-30)

Fixes

  • correct I2OSP for numbers larger than 32 bits (5b632c6)
  • use psk byteLength for mode determination (ad34537)

Refactor

  • handle edge cases in pointAdd (1a63302)

0.4.1 (2025-11-29)

Refactor

  • more custom key non-extractable checks (3d02b02)

0.4.0 (2025-11-27)

⚠ BREAKING CHANGES

  • encapsulatedKey is now encapsulatedSecret

Refactor

  • encapsulatedKey is now encapsulatedSecret (3a10dac)

0.3.0 (2025-11-25)

⚠ BREAKING CHANGES

  • Single-Shot APIs aad is moved to the options argument

Refactor

  • Single-Shot APIs aad is moved to the options argument (962b0ea)

0.2.7 (2025-11-24)

Features

  • add the remaining hybrids to extensibility (6472e8e)

0.2.6 (2025-11-22)

Fixes

  • ensure custom non-extractable Key instances cannot be extracted through a KEM instance (1a74f06)

0.2.5 (2025-11-22)

Refactor

  • capture stacktraces when Error.captureStackTrace is available (4b76796)

Documentation

  • add JSDoc for exported utilities (fa3d6bf)

0.2.4 (2025-11-21)

Fixes

  • set P-256 group Nseed constant correctly (0417448)

0.2.3 (2025-11-19)

Refactor

  • apply workarounds for pkcs8 imports to hybrids (9a07460)

0.2.2 (2025-11-17)

Fixes

  • work around firefox and safari NIST curve pkcs8 format limitations (df28631)

0.2.1 (2025-11-17)

Fixes

  • correctly detext SharedArrayBuffer (b33ea4c)

0.2.0 (2025-11-17)

⚠ BREAKING CHANGES

  • options.psk_id is now options.pskId
  • encapsulated_key is now encapsulatedKey

Refactor

  • the snakeCase apocalypse (5b2e675)

0.1.0 (2025-11-17)

Features

  • Implementation of RFC9180, draft-ietf-hpke-hpke-02, and draft-ietf-hpke-pq-03 (09a81d9)

0.0.0 (2025-11-17)

npm placeholder