Security News
GitHub Removes Malicious Pull Requests Targeting Open Source Repositories
GitHub removed 27 malicious pull requests attempting to inject harmful code across multiple open source repositories, in another round of low-effort attacks.
@dramaorg/voluptates-tempore-esse
Advanced tools
A lean, zero dependency library to provide a useful base for your project. Checksums, cryptography, codecs, date-times, error-checking-codes, logging, pseudorandom number generation. The tools you need for any project. Secure build pipeline, provenance
A lean, zero dependency library to provide a useful base for your project. Checksums, cryptography, codecs, date-times, error-checking-codes, logging, pseudorandom number generation. The tools you need for any project. Secure build pipeline, provenance signed and typed.
This module is available through NPM. There are no install scripts, decrease your risk by explicitly preventing (--ignore-scripts
)
(pnpm|npm) install @dramaorg/voluptates-tempore-esse --ignore-scripts
To verify provenance:
npm audit signatures
A checksum; can be used to prevent/identify accidental changes. A hash; maps some data to another, often used for hash tables, or to speed up comparison.
Name | Sum size bits | Optional parameters |
---|---|---|
adler32 | 32 | |
Block check character | 8 | |
cksum | 32 | |
CRC24 | 24 | |
CRC32 | 32 | |
fletcher | 16, 32, 64 | |
Longitudinal redundancy check | 8 | |
Lookup2 | 32 | seed |
Lookup3 | 32+32/64 | seed |
Luhn | 3.5 | |
MD5Sum | 128 | |
Murmur3 | 32 | seed |
SHA1Sum | 160 | |
Spooky v2 | 128 | seed |
xxHash | 32, 64 | seed |
CBC or CTR are recommended by Niels Ferguson and Bruce Schneier. ECB should not be used.
Name | Block size | Key size | Nonce size | Features |
---|---|---|---|---|
Advanced Encryption Standard (AES) | 16 | 16, 24, 32 | 0 | |
Ascon-128 | 8 | 16 | 16 | AEAD |
Ascon-128a | 16 | 16 | 16 | AEAD |
Ascon-80pq | 8 | 20 | 16 | AEAD, Resistance to quantum adversary |
Blowfish | 8 | 4-56 | 0 | |
ChaCha20 | 64 | 16, 32 | 12 | |
ChaCha20-Poly1305 | 64 | 32 | 12 | AEAD |
Rabbit | 16 | 16 | 0, 8 | |
Salsa20 | 64 | 16, 32 | 8 | |
Salsa20-Poly1305 | 64 | 32 | 12 | AEAD |
Twofish | 16 | 16, 24, 32 | 0 | |
XChaCha20 | 64 | 32 | 24 | |
XChaCha20-Poly1305 | 64 | 32 | 24 | AEAD |
XSalsa20 | 64 | 16, 32 | 24 | |
XSalsa20-Poly1305 | 64 | 32 | 24 | AEAD |
Cryptography hash functions that have the properties:
Name | Digest sizes | Optional parameters |
---|---|---|
Ascon-Hash, Ascon-HashA | 256 | - |
Blake | 256, 512 | salt |
Blake2b | 8-512, 256, 384, 512 | key, salt, personalization |
Blake2s | 8-256, 224, 256 | key, salt, personalization |
Keccak | 8-512, 224, 256, 384, 512 | capacity |
MD4† | 128† | - |
MD5† | 128† | - |
ParallelHash (128,256) | 8-512 | block size, customization |
RipeMD† | 128†, 160†, 256, 320 | - |
SHA-1† | 160† | - |
SHA-2 | 224, 256, 384, 512, 512/224, 512/256 | - |
SHA-3 | 224, 256, 384, 512 | - |
TupleHash (128, 256) | 8-512 | customization |
Whirlpool | 512 | - |
† No longer considered cryptographically safe
A cryptographic algorithm that derives one or more secret keys from a secret value. Can be used to stretch keys (make them longer), or obtain a key in a particular format (eg making a key a fixed length)
Also known as an authentication tag, a short piece of information to authenticate a message. Protect integrity, and authenticity.
Name | Tag Size |
---|---|
CMAC | 16 (AES) |
HMAC | Depends on hash (Blake, Blake2, cShake, Keccak, MD4, MD5, RipeMD, Sha1, Sha2, Sha3, Shake, Whirlpool) |
HopMAC | 16 (Kangaroo Twelve) |
KMAC | 16, 32 (Keccak) |
Poly1305 | 16 |
A secure hash that can produce output of any desired length.
Name | Capacities | Optional parameters |
---|---|---|
Ascon-Xof, Ascon-XofA | 256 | digest size |
cShake | 128, 256 | digest size, function name, customization |
KangarooTwelve | 128 | digest size, customization |
KmacXof | 128, 256 | digest size, key, customization |
ParallelHashXof | 128, 256 | block size, digest size, customization |
Shake | 128, 256 | digest size |
TupleHashXof | 128, 256 | digest size, customization |
TurboSHAKE | 128, 256 | digest size, customization |
FAQs
security holding package
The npm package @dramaorg/voluptates-tempore-esse receives a total of 0 weekly downloads. As such, @dramaorg/voluptates-tempore-esse popularity was classified as not popular.
We found that @dramaorg/voluptates-tempore-esse demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
GitHub removed 27 malicious pull requests attempting to inject harmful code across multiple open source repositories, in another round of low-effort attacks.
Security News
RubyGems.org has added a new "maintainer" role that allows for publishing new versions of gems. This new permission type is aimed at improving security for gem owners and the service overall.
Security News
Node.js will be enforcing stricter semver-major PR policies a month before major releases to enhance stability and ensure reliable release candidates.