Back to Explore

panva/hkdf

GitHub
1 watchersOpen source

Last release: 7/3/2024

Provides an implementation of the HKDF key derivation function (RFC 5869) in Node.js and multiple other JavaScript runtimes, using native crypto with no dependencies. Useful for deriving fixed-length cryptographic keys from input keying material (ikm) plus optional salt and info, based on a selectable digest algorithm. The project is marked as archived, with guidance to use the Web Cryptography API’s deriveBits instead.

Project status

  • The source is marked as archived upstream, so active maintenance is not evident from the available evidence.
  • The most recent recorded updates were v1.2.1 (2024-07-03) and v1.2.0 (2024-06-18), with an earlier update v1.1.1 in 2023-04-26, suggesting an infrequent update cadence.

AI summary generated Today

AI-generated from public sources. May be inaccurate. Report

Recent updates

  • v1.2.1

    7/3/2024

    Release v1.2.1 contains a small build/distribution packaging fix. It updates the ESM distribution package.json files to mark them as side-effect free for bundlers/tree-shaking.

  • v1.2.0

    6/18/2024

    Release v1.2.0 primarily adds new package.json export conditions so the library can be resolved for Bun, Deno, and Workerd. The documented runtime change is implemented via additional `exports` condition keys that point to the existing web build output.

    Features

  • v1.1.1

    4/26/2023

    Release v1.1.1 is a packaging-focused bug fix. It updates the npm package contents to exclude deno documentation/artifacts from the published tarball.

  • v1.1.0

    4/26/2023

    v1.1.0 release notes only call out an updated release process that publishes with provenance. The actual diff is dominated by CI and release workflow changes, along with devDependency and package-lock updates, and a small modification to the release-notes generation script.

    SecurityFeatures

  • v1.0.4

    2/16/2023

    Release v1.0.4 includes the documented addition of a worker export target, plus a build-related CI tweak to trigger tests. The code diff, however, shows substantial internal CI and test/tooling refactors (workflows, npm scripts, dev tooling, and tsconfig settings) that are not described in the release notes.

    Features

  • v1.0.2

    5/2/2022

    Release v1.0.2 primarily adds a TypeScript type export to support NodeNext module resolution. The diff also includes changes to CI workflow triggers and documentation, including README updates referencing Next.js Middleware and similar environments.

  • v1.0.1

    10/29/2021

    This v1.0.1 release adds validation to ensure the requested HKDF output length (keylen) does not exceed the maximum permitted by the selected digest size. The primary code change introduces a new keylen normalizer that throws when keylen is too large, and updates the generated dist builds and README to reflect the new constraint.

  • v1.0.0

    10/29/2021

    This release introduces a new universal HKDF implementation aligned with RFC 5869. It adds functionality for deriving cryptographic keys using the standard HKDF algorithm.

    Features