npmpackage.info

Gathering detailed insights and metrics for eccrypto-js

Other packages similar to eccrypto-js

@toruslabs/eccrypto

5.0.4

JavaScript Elliptic curve cryptography library, includes fix to browser.js so that encrypt/decrypt works

eccrypto

1.1.6

JavaScript Elliptic curve cryptography library

@types/eccrypto

1.1.6

TypeScript definitions for eccrypto

ecies-geth

1.7.3

JavaScript Elliptic Curve Integrated Encryption Scheme (ECIES) Library - Based off Geth's implementation

Gathering detailed insights and metrics for eccrypto-js

eccrypto-js

Elliptic curve cryptography library (NodeJS, Browser and Pure JS)

5.4.0

MIT

TypeScript

907,242 1.5

Installations

npm install eccrypto-js

Pull Requests

Open

17

Total

27

Closed

7

Merged

3

Issues

Open

4

Total

7

Closed

3

Releases

v5.3.0

5.3.0

Published on 25 May 2020

v5.2.0

5.2.0

Published on 06 May 2020

v5.1.1

5.1.1

Published on 06 May 2020

v5.1.0

5.1.0

Published on 06 May 2020

v5.0.0

5.0.0

Published on 05 May 2020

v4.5.3

4.5.3

Published on 09 Apr 2020

View all 51 releases

Developer

pedrouid

Developer Guide

BETA

Module System

CommonJS

Min. Node Version

Typescript Support

Yes

Node Version

NPM Version

Statistics

28 Stars

235 Commits

11 Forks

5 Watching

16 Branches

1 Contributors

Updated on 20 Jun 2024

Languages

TypeScript (99.59%)

JavaScript (0.41%)

Total Downloads

Cumulative downloads

Total Downloads

907,242

Last day

465%

695

Compared to previous day

Last week

216.3%

4,223

Compared to previous week

Last month

124.2%

8,442

Compared to previous month

Last year

-45.4%

53,331

Compared to previous year

Daily Downloads

Weekly Downloads

Monthly Downloads

Yearly Downloads

Dependencies

aes-js enc-utils hash.js js-sha3 pbkdf2 randombytes secp256k1

Dev Dependencies

@peculiar/webcrypto @types/aes-js @types/eccrypto @types/elliptic @types/jest @types/node @types/pbkdf2 @types/randombytes eccrypto husky tsdx tslib typescript webpack webpack-cli

Versions

eccrypto-js

Elliptic curve cryptography library (NodeJS, Browser and Pure JS)

Description

This library is a port from eccrypto it makes use of native libraries on NodeJS and Browser enviroments with pure javascript fallbacks.

Usage

RandomBytes

1import * as eccryptoJS from 'eccrypto-js';
2
3const length = 32;
4const key = eccryptoJS.randomBytes(length);
5
6// key.length === length

AES

1import * as eccryptoJS from 'eccrypto-js';
2
3const key = eccryptoJS.randomBytes(32);
4const iv = eccryptoJS.randomBytes(16);
5
6const str = 'test message to encrypt';
7const msg = eccryptoJS.utf8ToBuffer(str);
8
9const ciphertext = await eccryptoJS.aesCbcEncrypt(iv, key, msg);
10
11const decrypted = await eccryptoJS.aesCbcDecrypt(iv, key, ciphertext);
12
13// decrypted.toString() === str

HMAC

1import * as eccryptoJS from 'eccrypto-js';
2
3const key = eccryptoJS.randomBytes(32);
4const iv = eccryptoJS.randomBytes(16);
5
6const macKey = eccryptoJS.concatBuffers(iv, key);
7const dataToMac = eccryptoJS.concatBuffers(iv, key, msg);
8
9const mac = await eccryptoJS.hmacSha256Sign(macKey, dataToMac);
10
11const result = await eccryptoJS.hmacSha256Verify(macKey, dataToMac, mac);
12
13// result will return true if match

SHA2

1import * as eccryptoJS from 'eccrypto-js';
2
3// SHA256
4const str = 'test message to hash';
5const msg = eccryptoJS.utf8ToBuffer(str);
6const hash = await eccryptoJS.sha256(str);
7
8// SHA512
9const str = 'test message to hash';
10const msg = eccryptoJS.utf8ToBuffer(str);
11const hash = await eccryptoJS.sha512(str);

SHA3

1import * as eccryptoJS from 'eccrypto-js';
2
3// SHA3
4const str = 'test message to hash';
5const msg = eccryptoJS.utf8ToBuffer(str);
6const hash = await eccryptoJS.sha3(str);
7
8// KECCAK256
9const str = 'test message to hash';
10const msg = eccryptoJS.utf8ToBuffer(str);
11const hash = await eccryptoJS.keccak256(str);

ECDSA

1import * as eccryptoJS from 'eccrypto-js';
2
3const keyPair = eccryptoJS.generateKeyPair();
4
5const str = 'test message to hash';
6const msg = eccryptoJS.utf8ToBuffer(str);
7const hash = await eccryptoJS.sha256(str);
8
9const sig = await eccryptoJS.sign(keyPair.privateKey, hash);
10
11await eccryptoJS.verify(keyPair.publicKey, msg, sig);
12
13// verify will throw if signature is BAD

ECDH

1import * as eccryptoJS from 'eccrypto-js';
2
3const keyPairA = eccryptoJS.generateKeyPair();
4const keyPairB = eccryptoJS.generateKeyPair();
5
6const sharedKey1 = await eccryptoJS.derive(
7  keyPairA.privateKey,
8  keyPairB.publicKey
9);
10
11const sharedKey2 = await eccryptoJS.derive(
12  keyPairB.privateKey,
13  keyPairA.publicKey
14);
15
16// sharedKey1.toString('hex') === sharedKey2.toString('hex')

ECIES

1import * as eccryptoJS from 'eccrypto-js';
2
3const keyPair = eccryptoJS.generateKeyPair();
4
5const str = 'test message to encrypt';
6const msg = eccryptoJS.utf8ToBuffer(str);
7
8const encrypted = await eccryptoJS.encrypt(keyPairB.publicKey, msg);
9
10const decrypted = await eccryptoJS.decrypt(keyPairB.privateKey, encrypted);
11
12// decrypted.toString() === str

PBKDF2

1import * as eccryptoJS from 'eccrypto-js';
2
3const password = 'password';
4const buffer = eccryptoJS.utf8ToBuffer(str);
5
6const key = await eccryptoJS.pbkdf2(buffer);
7
8// key.length === 32

React-Native Support

This library is intended for use in a Browser or NodeJS environment, however it is possible to use in a React-Native environment if NodeJS modules are polyfilled with react-native-crypto, read more here.

License

MIT License

No vulnerabilities found.

10

Binary-Artifacts

Determines if the project has generated executable (binary) artifacts in the source repository.

10

License

Determines if the project has defined a license.

0

Maintained

Determines if the project is "actively maintained".

0

Code-Review

Determines if the project requires human code review before pull requests (aka merge requests) are merged.

0

CII-Best-Practices

Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.

0

Security-Policy

Determines if the project has published a security policy.

0

Fuzzing

Determines if the project uses fuzzing.

0

Signed-Releases

Determines if the project cryptographically signs release artifacts.

0

Branch-Protection

Determines if the default and release branches are protected with GitHub's branch protection settings.

0

SAST

Determines if the project uses static code analysis.

0

Vulnerabilities

Determines if the project has open, known unfixed vulnerabilities.

Reason

52 existing vulnerabilities detected

Details

Warn: Project is vulnerable to: GHSA-67hx-6x53-jw92
Warn: Project is vulnerable to: GHSA-6chw-6frg-f759
Warn: Project is vulnerable to: GHSA-v88g-cgmw-v5xw
Warn: Project is vulnerable to: GHSA-93q8-gq69-wqmw
Warn: Project is vulnerable to: GHSA-grv7-fg5c-xmjg
Warn: Project is vulnerable to: GHSA-x9w5-v3q2-3rhw
Warn: Project is vulnerable to: GHSA-w8qv-6jwh-64r5
Warn: Project is vulnerable to: GHSA-3xgq-45jj-v275
Warn: Project is vulnerable to: GHSA-gxpj-cx7g-858c
Warn: Project is vulnerable to: GHSA-w573-4hg7-7wgq
Warn: Project is vulnerable to: GHSA-vh7m-p724-62c2
Warn: Project is vulnerable to: GHSA-r9p9-mrjm-926w
Warn: Project is vulnerable to: GHSA-434g-2637-qmqr
Warn: Project is vulnerable to: GHSA-49q7-c7j4-3p7m
Warn: Project is vulnerable to: GHSA-977x-g7h5-7qgw
Warn: Project is vulnerable to: GHSA-f7q4-pwc6-w24p
Warn: Project is vulnerable to: GHSA-fc9h-whq2-v747
Warn: Project is vulnerable to: GHSA-ww39-953v-wcq6
Warn: Project is vulnerable to: GHSA-43f8-2h32-f4cj
Warn: Project is vulnerable to: GHSA-qqgx-2p2h-9c37
Warn: Project is vulnerable to: GHSA-896r-f27r-55mw
Warn: Project is vulnerable to: GHSA-9c47-m6qq-7p4h
Warn: Project is vulnerable to: GHSA-76p3-8jx3-jpfq
Warn: Project is vulnerable to: GHSA-3rfm-jhwj-7488
Warn: Project is vulnerable to: GHSA-hhq3-ff78-jv3g
Warn: Project is vulnerable to: GHSA-p6mc-m468-83gw
Warn: Project is vulnerable to: GHSA-29mw-wpgm-hmr9
Warn: Project is vulnerable to: GHSA-35jh-r3h4-6jhm
Warn: Project is vulnerable to: GHSA-952p-6rrq-rcjv
Warn: Project is vulnerable to: GHSA-f8q6-p94x-37v3
Warn: Project is vulnerable to: GHSA-vh95-rmgr-6w4m / GHSA-xvch-5gv4-984h
Warn: Project is vulnerable to: GHSA-5fw9-fq32-wv5p
Warn: Project is vulnerable to: GHSA-hj48-42vr-x3v9
Warn: Project is vulnerable to: GHSA-hrpp-h998-j3pp
Warn: Project is vulnerable to: GHSA-p8p7-x288-28g6
Warn: Project is vulnerable to: GHSA-gcx4-mw62-g8wm
Warn: Project is vulnerable to: GHSA-584q-6j8j-r5pm
Warn: Project is vulnerable to: GHSA-c2qf-rxjj-qqgw
Warn: Project is vulnerable to: GHSA-44c6-4v22-4mhx
Warn: Project is vulnerable to: GHSA-4x5v-gmq8-25ch
Warn: Project is vulnerable to: GHSA-hxcc-f52p-wc94
Warn: Project is vulnerable to: GHSA-4rq4-32rv-6wp6
Warn: Project is vulnerable to: GHSA-64g7-mvw6-v9qj
Warn: Project is vulnerable to: GHSA-vx3p-948g-6vhq
Warn: Project is vulnerable to: GHSA-4wf5-vphf-c2xc
Warn: Project is vulnerable to: GHSA-jgrx-mgxx-jf9v
Warn: Project is vulnerable to: GHSA-72xf-g2v4-qvf3
Warn: Project is vulnerable to: GHSA-j8xg-fqg3-53r7
Warn: Project is vulnerable to: GHSA-6fc8-4gx4-v693
Warn: Project is vulnerable to: GHSA-3h5v-q93c-6h6q
Warn: Project is vulnerable to: GHSA-c4w7-xm78-47vh
Warn: Project is vulnerable to: GHSA-p9pc-299p-vxgp

Score

1.5

/10

Last Scanned on 2024-11-18

The Open Source Security Foundation is a cross-industry collaboration to improve the security of open source software (OSS). The Scorecard provides security health metrics for open source projects.

Learn More