Security News
Node.js EOL Versions CVE Dubbed the "Worst CVE of the Year" by Security Experts
Critics call the Node.js EOL CVE a misuse of the system, sparking debate over CVE standards and the growing noise in vulnerability databases.
XSalsa20 implemented in Javascript and WebAssembly.
npm install xsalsa20
var crypto = require('crypto')
var xsalsa20 = require('xsalsa20')
var key = crypto.randomBytes(32)
var nonce = crypto.randomBytes(24)
var xor = xsalsa20(nonce, key)
console.log(xor.update(Buffer.from('hello')))
console.log(xor.update(Buffer.from('world')))
xor.finalize()
var xor = xsalsa20(nonce, key)
Create a new xor instance.
Nonce should be a 24 byte buffer/uint8array and key should be 32 bytes.
var output = xor.update(input, [output])
Update the xor instance with a new input buffer. Optionally you can pass in an output buffer.
xor.finalize()
Call this method last. Clears internal state.
The bulk of this module is implemented in WebAssembly in the xsalsa20.wat file. To build the thin Javascript wrapper do:
npm run compile
MIT
FAQs
XSalsa20 implemented in Javascript and WebAssembly
The npm package xsalsa20 receives a total of 16,765 weekly downloads. As such, xsalsa20 popularity was classified as popular.
We found that xsalsa20 demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Critics call the Node.js EOL CVE a misuse of the system, sparking debate over CVE standards and the growing noise in vulnerability databases.
Security News
cURL and Go security teams are publicly rejecting CVSS as flawed for assessing vulnerabilities and are calling for more accurate, context-aware approaches.
Security News
Bun 1.2 enhances its JavaScript runtime with 90% Node.js compatibility, built-in S3 and Postgres support, HTML Imports, and faster, cloud-first performance.