Security News
NIST Misses 2024 Deadline to Clear NVD Backlog
NIST has failed to meet its self-imposed deadline of clearing the NVD's backlog by the end of the fiscal year. Meanwhile, CVE's awaiting analysis have increased by 33% since June.
libp2p-secio
Advanced tools
SECIO implementation in JavaScript
This repo contains the JavaScript implementation of secio, an encryption protocol used in libp2p. This is based on this go implementation.
npm install libp2p-secio
const secio = require('libp2p-secio')
.tag
The current secio
tag, usable in multistream
.
const encryptedConnection = secio.encrypt(localPeerId, plainTextConnection [, remotePeerId] [, callback])
localPeerId: PeerId
- A PeerId object containing the Private, Public and Id of our node.plainTextConnection: Connection
- The insecure connection to be secured.remotePeerId: PeerId
- A PeerId object containing the Public and/or Id of the node we are doing the SECIO handshake with.callback: Function
- Optional, Called if an error happens during the initialization.Returns an encrypted Connection object that is the upgraded plainTextConnection
with now having every byte encripted.
Both plainTextConnection and encryptedConnection are at their base, PullStreams.
pull-streams
We expose a streaming interface based on pull-streams
, rather then on the Node.js core streams implementation (aka Node.js streams). pull-streams
offers us a better mechanism for error handling and flow control guarantees. If you would like to know more about why we did this, see the discussion at this issue.
You can learn more about pull-streams at:
pull-streams
to Node.js StreamsIf you are a Node.js streams user, you can convert a pull-stream to a Node.js stream using the module pull-stream-to-stream
, giving you an instance of a Node.js stream that is linked to the pull-stream. For example:
const pullToStream = require('pull-stream-to-stream')
const nodeStreamInstance = pullToStream(pullStreamInstance)
// nodeStreamInstance is an instance of a Node.js Stream
To learn more about this utility, visit https://pull-stream.github.io/#pull-stream-to-stream.
Feel free to join in. All welcome. Open an issue!
This repository falls under the IPFS Code of Conduct.
0.11.0 (2019-01-03)
<a name="0.10.1"></a>
FAQs
Secio implementation in JavaScript
The npm package libp2p-secio receives a total of 491 weekly downloads. As such, libp2p-secio popularity was classified as not popular.
We found that libp2p-secio demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 3 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
NIST has failed to meet its self-imposed deadline of clearing the NVD's backlog by the end of the fiscal year. Meanwhile, CVE's awaiting analysis have increased by 33% since June.
Security News
Cloudflare has launched a setup wizard allowing users to easily create and manage a security.txt file for vulnerability disclosure on their websites.
Security News
The Socket Research team breaks down a malicious npm package targeting the legitimate DOMPurify library. It uses obfuscated code to hide that it is exfiltrating browser and crypto wallet data.