Security News
GitHub Removes Malicious Pull Requests Targeting Open Source Repositories
GitHub removed 27 malicious pull requests attempting to inject harmful code across multiple open source repositories, in another round of low-effort attacks.
@ligolang/hacl-wasm
Advanced tools
Javascript bindings for the KreMLin-extracted WebAssembly version of the HACL* cryptographic library
This package relies on the WebAssembly output of the KreMLin compiler. The following files need to be in the package directory for the bindings to work :
.wasm
files corresponding to HACL* modules generated by KreMLin;loader.js
and shell.js
, which are also generated by KreMLinThe main file for the bindings is api.js
. This file reads the API data described
in api.json
and creates a Javascript object containing functions that call
into the HACL* WebAssembly modules with the correct arguments.
api_test.js
runs the test vectors for each exposed function to check the
correctness of the bindings (the WebAssembly code is compiled from verified
code so it should be correct).
Run the file api_doc.js
. This will create a new file doc/readable_api.js
.
To produce the JSDoc documentation of the HACL Javascript API, please run
jsdoc doc/readable_api.js -d doc/out
You can browse the documentation by opening doc/out/index.html
in your web browser.
FAQs
Javascript bindings for the KreMLin-extracted WebAssembly version of the HACL* cryptographic library
We found that @ligolang/hacl-wasm demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 8 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
GitHub removed 27 malicious pull requests attempting to inject harmful code across multiple open source repositories, in another round of low-effort attacks.
Security News
RubyGems.org has added a new "maintainer" role that allows for publishing new versions of gems. This new permission type is aimed at improving security for gem owners and the service overall.
Security News
Node.js will be enforcing stricter semver-major PR policies a month before major releases to enhance stability and ensure reliable release candidates.