@de-otio/chaoskb-client 0.2.0

package/dist/crypto/hkdf.js

@@ -0,0 +1,33 @@
+import { hkdf } from '@noble/hashes/hkdf.js';
+import { sha256 } from '@noble/hashes/sha2.js';
+import { SecureBuffer } from './secure-buffer.js';
+const DEFAULT_KEY_LENGTH = 32;
+/**
+ * Derive a key using HKDF-SHA256 (Extract+Expand per RFC 5869).
+ * @param ikm - Input keying material
+ * @param info - Context/application-specific info string
+ * @param salt - Optional salt (defaults to empty Uint8Array)
+ * @param length - Output key length in bytes (default 32)
+ */
+export function deriveKey(ikm, info, salt, length) {
+    const infoBytes = new TextEncoder().encode(info);
+    return hkdf(sha256, ikm, salt ?? new Uint8Array(0), infoBytes, length ?? DEFAULT_KEY_LENGTH);
+}
+/**
+ * Derive the complete set of subkeys from a master key.
+ * Returns SecureBuffer-wrapped keys for:
+ *   CEK (content), MEK (metadata), EEK (embedding), CKY (commit)
+ */
+export function deriveKeySet(masterKey, salt) {
+    const cekBytes = deriveKey(masterKey, 'chaoskb-content', salt);
+    const mekBytes = deriveKey(masterKey, 'chaoskb-metadata', salt);
+    const eekBytes = deriveKey(masterKey, 'chaoskb-embedding', salt);
+    const ckyBytes = deriveKey(masterKey, 'chaoskb-commit', salt);
+    return {
+        contentKey: SecureBuffer.from(Buffer.from(cekBytes)),
+        metadataKey: SecureBuffer.from(Buffer.from(mekBytes)),
+        embeddingKey: SecureBuffer.from(Buffer.from(eekBytes)),
+        commitKey: SecureBuffer.from(Buffer.from(ckyBytes)),
+    };
+}
+//# sourceMappingURL=hkdf.js.map

package/dist/crypto/hkdf.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"hkdf.js","sourceRoot":"","sources":["../../crypto/hkdf.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,IAAI,EAAE,MAAM,uBAAuB,CAAC;AAC7C,OAAO,EAAE,MAAM,EAAE,MAAM,uBAAuB,CAAC;AAE/C,OAAO,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AAGlD,MAAM,kBAAkB,GAAG,EAAE,CAAC;AAE9B;;;;;;GAMG;AACH,MAAM,UAAU,SAAS,CACvB,GAAe,EACf,IAAY,EACZ,IAAiB,EACjB,MAAe;IAEf,MAAM,SAAS,GAAG,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;IACjD,OAAO,IAAI,CAAC,MAAM,EAAE,GAAG,EAAE,IAAI,IAAI,IAAI,UAAU,CAAC,CAAC,CAAC,EAAE,SAAS,EAAE,MAAM,IAAI,kBAAkB,CAAC,CAAC;AAC/F,CAAC;AAED;;;;GAIG;AACH,MAAM,UAAU,YAAY,CAAC,SAAqB,EAAE,IAAiB;IACnE,MAAM,QAAQ,GAAG,SAAS,CAAC,SAAS,EAAE,iBAAiB,EAAE,IAAI,CAAC,CAAC;IAC/D,MAAM,QAAQ,GAAG,SAAS,CAAC,SAAS,EAAE,kBAAkB,EAAE,IAAI,CAAC,CAAC;IAChE,MAAM,QAAQ,GAAG,SAAS,CAAC,SAAS,EAAE,mBAAmB,EAAE,IAAI,CAAC,CAAC;IACjE,MAAM,QAAQ,GAAG,SAAS,CAAC,SAAS,EAAE,gBAAgB,EAAE,IAAI,CAAC,CAAC;IAE9D,OAAO;QACL,UAAU,EAAE,YAAY,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QACpD,WAAW,EAAE,YAAY,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QACrD,YAAY,EAAE,YAAY,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QACtD,SAAS,EAAE,YAAY,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;KACpD,CAAC;AACJ,CAAC"}

package/dist/crypto/index.d.ts

@@ -0,0 +1,15 @@
+export * from './types.js';
+export { SecureBuffer } from './secure-buffer.js';
+export { canonicalJson } from './canonical-json.js';
+export { generateBlobId } from './blob-id.js';
+export { aeadEncrypt, aeadDecrypt } from './aead.js';
+export { deriveKey, deriveKeySet } from './hkdf.js';
+export { deriveFromPassphrase as argon2Derive } from './argon2.js';
+export { constructAAD } from './aad.js';
+export { computeCommitment, verifyCommitment } from './commitment.js';
+export { encryptPayload, decryptEnvelope } from './envelope.js';
+export { parseSSHPublicKey, ed25519ToX25519PublicKey, ed25519ToX25519SecretKey } from './ssh-keys.js';
+export { EncryptionService } from './encryption-service.js';
+export { KeyringService } from './keyring.js';
+export { createProjectKey, unwrapProjectKey } from './project-keys.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/crypto/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../crypto/index.ts"],"names":[],"mappings":"AAAA,cAAc,YAAY,CAAC;AAC3B,OAAO,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AAClD,OAAO,EAAE,aAAa,EAAE,MAAM,qBAAqB,CAAC;AACpD,OAAO,EAAE,cAAc,EAAE,MAAM,cAAc,CAAC;AAC9C,OAAO,EAAE,WAAW,EAAE,WAAW,EAAE,MAAM,WAAW,CAAC;AACrD,OAAO,EAAE,SAAS,EAAE,YAAY,EAAE,MAAM,WAAW,CAAC;AACpD,OAAO,EAAE,oBAAoB,IAAI,YAAY,EAAE,MAAM,aAAa,CAAC;AACnE,OAAO,EAAE,YAAY,EAAE,MAAM,UAAU,CAAC;AACxC,OAAO,EAAE,iBAAiB,EAAE,gBAAgB,EAAE,MAAM,iBAAiB,CAAC;AACtE,OAAO,EAAE,cAAc,EAAE,eAAe,EAAE,MAAM,eAAe,CAAC;AAChE,OAAO,EAAE,iBAAiB,EAAE,wBAAwB,EAAE,wBAAwB,EAAE,MAAM,eAAe,CAAC;AACtG,OAAO,EAAE,iBAAiB,EAAE,MAAM,yBAAyB,CAAC;AAC5D,OAAO,EAAE,cAAc,EAAE,MAAM,cAAc,CAAC;AAC9C,OAAO,EAAE,gBAAgB,EAAE,gBAAgB,EAAE,MAAM,mBAAmB,CAAC"}

package/dist/crypto/index.js

@@ -0,0 +1,15 @@
+export * from './types.js';
+export { SecureBuffer } from './secure-buffer.js';
+export { canonicalJson } from './canonical-json.js';
+export { generateBlobId } from './blob-id.js';
+export { aeadEncrypt, aeadDecrypt } from './aead.js';
+export { deriveKey, deriveKeySet } from './hkdf.js';
+export { deriveFromPassphrase as argon2Derive } from './argon2.js';
+export { constructAAD } from './aad.js';
+export { computeCommitment, verifyCommitment } from './commitment.js';
+export { encryptPayload, decryptEnvelope } from './envelope.js';
+export { parseSSHPublicKey, ed25519ToX25519PublicKey, ed25519ToX25519SecretKey } from './ssh-keys.js';
+export { EncryptionService } from './encryption-service.js';
+export { KeyringService } from './keyring.js';
+export { createProjectKey, unwrapProjectKey } from './project-keys.js';
+//# sourceMappingURL=index.js.map

package/dist/crypto/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../crypto/index.ts"],"names":[],"mappings":"AAAA,cAAc,YAAY,CAAC;AAC3B,OAAO,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AAClD,OAAO,EAAE,aAAa,EAAE,MAAM,qBAAqB,CAAC;AACpD,OAAO,EAAE,cAAc,EAAE,MAAM,cAAc,CAAC;AAC9C,OAAO,EAAE,WAAW,EAAE,WAAW,EAAE,MAAM,WAAW,CAAC;AACrD,OAAO,EAAE,SAAS,EAAE,YAAY,EAAE,MAAM,WAAW,CAAC;AACpD,OAAO,EAAE,oBAAoB,IAAI,YAAY,EAAE,MAAM,aAAa,CAAC;AACnE,OAAO,EAAE,YAAY,EAAE,MAAM,UAAU,CAAC;AACxC,OAAO,EAAE,iBAAiB,EAAE,gBAAgB,EAAE,MAAM,iBAAiB,CAAC;AACtE,OAAO,EAAE,cAAc,EAAE,eAAe,EAAE,MAAM,eAAe,CAAC;AAChE,OAAO,EAAE,iBAAiB,EAAE,wBAAwB,EAAE,wBAAwB,EAAE,MAAM,eAAe,CAAC;AACtG,OAAO,EAAE,iBAAiB,EAAE,MAAM,yBAAyB,CAAC;AAC5D,OAAO,EAAE,cAAc,EAAE,MAAM,cAAc,CAAC;AAC9C,OAAO,EAAE,gBAAgB,EAAE,gBAAgB,EAAE,MAAM,mBAAmB,CAAC"}

package/dist/crypto/invite.d.ts

@@ -0,0 +1,31 @@
+import type { SSHKeyInfo } from './types.js';
+/**
+ * Create an encrypted invite blob for sharing a project key.
+ *
+ * Uses ephemeral X25519 ECDH + HKDF (with domain separation) + XChaCha20-Poly1305.
+ * The sender's and recipient's fingerprints and the project ID are bound into the
+ * HKDF info string to prevent cross-context key confusion.
+ *
+ * Output format: ephemeral_public_key(32) || nonce(24) || ciphertext || tag(16)
+ */
+export declare function createInviteBlob(projectKey: Uint8Array, projectId: string, senderKeyInfo: SSHKeyInfo, recipientKeyInfo: SSHKeyInfo): Uint8Array;
+/**
+ * Open an encrypted invite blob to recover the project key.
+ *
+ * @param blob - The full invite blob (ephemeral_pk || nonce || ciphertext || tag)
+ * @param recipientEd25519Sk - The recipient's 64-byte Ed25519 secret key
+ * @param recipientKeyInfo - The recipient's SSH key info (for fingerprint)
+ * @param senderKeyInfo - The sender's SSH key info (for fingerprint)
+ * @param projectId - The project ID (for HKDF domain separation)
+ * @returns The raw project key bytes
+ */
+export declare function openInviteBlob(blob: Uint8Array, recipientEd25519Sk: Uint8Array, recipientKeyInfo: SSHKeyInfo, senderKeyInfo: SSHKeyInfo, projectId: string): Uint8Array;
+/**
+ * Pad payload to a fixed size to prevent metadata leakage from blob sizes.
+ */
+export declare function padPayload(payload: Uint8Array, targetSize: number): Uint8Array;
+/**
+ * Remove padding to recover the original payload.
+ */
+export declare function unpadPayload(padded: Uint8Array): Uint8Array;
+//# sourceMappingURL=invite.d.ts.map

package/dist/crypto/invite.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"invite.d.ts","sourceRoot":"","sources":["../../crypto/invite.ts"],"names":[],"mappings":"AASA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,YAAY,CAAC;AAI7C;;;;;;;;GAQG;AACH,wBAAgB,gBAAgB,CAC9B,UAAU,EAAE,UAAU,EACtB,SAAS,EAAE,MAAM,EACjB,aAAa,EAAE,UAAU,EACzB,gBAAgB,EAAE,UAAU,GAC3B,UAAU,CA4CZ;AAED;;;;;;;;;GASG;AACH,wBAAgB,cAAc,CAC5B,IAAI,EAAE,UAAU,EAChB,kBAAkB,EAAE,UAAU,EAC9B,gBAAgB,EAAE,UAAU,EAC5B,aAAa,EAAE,UAAU,EACzB,SAAS,EAAE,MAAM,GAChB,UAAU,CAgCZ;AAeD;;GAEG;AACH,wBAAgB,UAAU,CAAC,OAAO,EAAE,UAAU,EAAE,UAAU,EAAE,MAAM,GAAG,UAAU,CAgB9E;AAED;;GAEG;AACH,wBAAgB,YAAY,CAAC,MAAM,EAAE,UAAU,GAAG,UAAU,CAS3D"}

package/dist/crypto/invite.js

@@ -0,0 +1,137 @@
+import { createHash, randomBytes } from 'node:crypto';
+import sodium from 'sodium-native';
+// sodium-native types are incomplete — these functions exist at runtime
+const sodiumAny = sodium;
+import { aeadEncrypt, aeadDecrypt } from './aead.js';
+import { deriveKey } from './hkdf.js';
+import { ed25519ToX25519PublicKey, ed25519ToX25519SecretKey } from './ssh-keys.js';
+const PADDED_PAYLOAD_SIZE = 512;
+/**
+ * Create an encrypted invite blob for sharing a project key.
+ *
+ * Uses ephemeral X25519 ECDH + HKDF (with domain separation) + XChaCha20-Poly1305.
+ * The sender's and recipient's fingerprints and the project ID are bound into the
+ * HKDF info string to prevent cross-context key confusion.
+ *
+ * Output format: ephemeral_public_key(32) || nonce(24) || ciphertext || tag(16)
+ */
+export function createInviteBlob(projectKey, projectId, senderKeyInfo, recipientKeyInfo) {
+    if (recipientKeyInfo.type !== 'ed25519') {
+        throw new Error('Invite crypto currently supports Ed25519 recipients only');
+    }
+    // Generate ephemeral X25519 key pair
+    const ephPk = Buffer.alloc(sodium.crypto_box_PUBLICKEYBYTES);
+    const ephSk = Buffer.alloc(sodium.crypto_box_SECRETKEYBYTES);
+    sodiumAny.crypto_box_keypair(ephPk, ephSk);
+    // Convert recipient Ed25519 public key to X25519
+    const recipientX25519Pk = ed25519ToX25519PublicKey(recipientKeyInfo.publicKeyBytes);
+    // ECDH: shared_secret = X25519(ephemeral_secret, recipient_x25519_public)
+    const sharedSecret = Buffer.alloc(sodiumAny.crypto_scalarmult_BYTES);
+    sodiumAny.crypto_scalarmult(sharedSecret, ephSk, Buffer.from(recipientX25519Pk));
+    // Derive encryption key with domain separation
+    const info = buildInviteHkdfInfo(senderKeyInfo.fingerprint, recipientKeyInfo.fingerprint, projectId);
+    const encryptionKey = deriveKey(new Uint8Array(sharedSecret), info);
+    // Pad and encrypt payload
+    const payload = JSON.stringify({
+        projectKey: Buffer.from(projectKey).toString('base64'),
+        projectId,
+    });
+    const padded = padPayload(new TextEncoder().encode(payload), PADDED_PAYLOAD_SIZE);
+    const emptyAAD = new Uint8Array(0);
+    const { nonce, ciphertext, tag } = aeadEncrypt(encryptionKey, padded, emptyAAD);
+    // Zero sensitive buffers
+    ephSk.fill(0);
+    sharedSecret.fill(0);
+    encryptionKey.fill(0);
+    // Output: ephemeral_pk(32) || nonce(24) || ciphertext || tag(16)
+    const result = new Uint8Array(ephPk.length + nonce.length + ciphertext.length + tag.length);
+    let offset = 0;
+    result.set(ephPk, offset);
+    offset += ephPk.length;
+    result.set(nonce, offset);
+    offset += nonce.length;
+    result.set(ciphertext, offset);
+    offset += ciphertext.length;
+    result.set(tag, offset);
+    return result;
+}
+/**
+ * Open an encrypted invite blob to recover the project key.
+ *
+ * @param blob - The full invite blob (ephemeral_pk || nonce || ciphertext || tag)
+ * @param recipientEd25519Sk - The recipient's 64-byte Ed25519 secret key
+ * @param recipientKeyInfo - The recipient's SSH key info (for fingerprint)
+ * @param senderKeyInfo - The sender's SSH key info (for fingerprint)
+ * @param projectId - The project ID (for HKDF domain separation)
+ * @returns The raw project key bytes
+ */
+export function openInviteBlob(blob, recipientEd25519Sk, recipientKeyInfo, senderKeyInfo, projectId) {
+    // Parse the blob
+    let offset = 0;
+    const ephPk = blob.slice(offset, offset + 32);
+    offset += 32;
+    const nonce = blob.slice(offset, offset + 24);
+    offset += 24;
+    const tagStart = blob.length - 16;
+    const ciphertext = blob.slice(offset, tagStart);
+    const tag = blob.slice(tagStart);
+    // Convert recipient Ed25519 secret key to X25519
+    const recipientX25519Sk = ed25519ToX25519SecretKey(recipientEd25519Sk);
+    // ECDH: shared_secret = X25519(recipient_x25519_secret, ephemeral_public)
+    const sharedSecret = Buffer.alloc(sodiumAny.crypto_scalarmult_BYTES);
+    sodiumAny.crypto_scalarmult(sharedSecret, Buffer.from(recipientX25519Sk), Buffer.from(ephPk));
+    // Derive same encryption key
+    const info = buildInviteHkdfInfo(senderKeyInfo.fingerprint, recipientKeyInfo.fingerprint, projectId);
+    const encryptionKey = deriveKey(new Uint8Array(sharedSecret), info);
+    // Decrypt
+    const emptyAAD = new Uint8Array(0);
+    const padded = aeadDecrypt(encryptionKey, nonce, ciphertext, tag, emptyAAD);
+    // Zero sensitive buffers
+    sharedSecret.fill(0);
+    encryptionKey.fill(0);
+    // Unpad and extract project key
+    const payload = unpadPayload(padded);
+    const parsed = JSON.parse(new TextDecoder().decode(payload));
+    return Buffer.from(parsed.projectKey, 'base64');
+}
+/**
+ * Build the HKDF info string with domain separation.
+ *
+ * Format: "chaoskb-invite-v1" || SHA256(senderFingerprint)(32) || SHA256(recipientFingerprint)(32) || SHA256(projectId)(32)
+ * Fixed-width encoding prevents ambiguity from variable-length fields.
+ */
+function buildInviteHkdfInfo(senderFingerprint, recipientFingerprint, projectId) {
+    const senderHash = createHash('sha256').update(senderFingerprint).digest('hex').slice(0, 64);
+    const recipientHash = createHash('sha256').update(recipientFingerprint).digest('hex').slice(0, 64);
+    const projectHash = createHash('sha256').update(projectId).digest('hex').slice(0, 64);
+    return `chaoskb-invite-v1${senderHash}${recipientHash}${projectHash}`;
+}
+/**
+ * Pad payload to a fixed size to prevent metadata leakage from blob sizes.
+ */
+export function padPayload(payload, targetSize) {
+    if (payload.length > targetSize - 4) {
+        throw new Error(`Payload too large to pad: ${payload.length} bytes (max ${targetSize - 4})`);
+    }
+    const padded = new Uint8Array(targetSize);
+    // First 4 bytes: big-endian payload length
+    const view = new DataView(padded.buffer);
+    view.setUint32(0, payload.length, false);
+    padded.set(payload, 4);
+    // Fill remainder with random bytes
+    const randomPadding = randomBytes(targetSize - 4 - payload.length);
+    padded.set(randomPadding, 4 + payload.length);
+    return padded;
+}
+/**
+ * Remove padding to recover the original payload.
+ */
+export function unpadPayload(padded) {
+    const view = new DataView(padded.buffer, padded.byteOffset, padded.byteLength);
+    const length = view.getUint32(0, false);
+    if (length > padded.length - 4) {
+        throw new Error('Invalid padding: declared length exceeds buffer');
+    }
+    return padded.slice(4, 4 + length);
+}
+//# sourceMappingURL=invite.js.map

package/dist/crypto/invite.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"invite.js","sourceRoot":"","sources":["../../crypto/invite.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,WAAW,EAAE,MAAM,aAAa,CAAC;AACtD,OAAO,MAAM,MAAM,eAAe,CAAC;AAEnC,wEAAwE;AACxE,MAAM,SAAS,GAAG,MAAa,CAAC;AAEhC,OAAO,EAAE,WAAW,EAAE,WAAW,EAAE,MAAM,WAAW,CAAC;AACrD,OAAO,EAAE,SAAS,EAAE,MAAM,WAAW,CAAC;AACtC,OAAO,EAAE,wBAAwB,EAAE,wBAAwB,EAAE,MAAM,eAAe,CAAC;AAGnF,MAAM,mBAAmB,GAAG,GAAG,CAAC;AAEhC;;;;;;;;GAQG;AACH,MAAM,UAAU,gBAAgB,CAC9B,UAAsB,EACtB,SAAiB,EACjB,aAAyB,EACzB,gBAA4B;IAE5B,IAAI,gBAAgB,CAAC,IAAI,KAAK,SAAS,EAAE,CAAC;QACxC,MAAM,IAAI,KAAK,CAAC,0DAA0D,CAAC,CAAC;IAC9E,CAAC;IAED,qCAAqC;IACrC,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,yBAAyB,CAAC,CAAC;IAC7D,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,yBAAyB,CAAC,CAAC;IAC7D,SAAS,CAAC,kBAAkB,CAAC,KAAK,EAAE,KAAK,CAAC,CAAC;IAE3C,iDAAiD;IACjD,MAAM,iBAAiB,GAAG,wBAAwB,CAAC,gBAAgB,CAAC,cAAc,CAAC,CAAC;IAEpF,0EAA0E;IAC1E,MAAM,YAAY,GAAG,MAAM,CAAC,KAAK,CAAC,SAAS,CAAC,uBAAuB,CAAC,CAAC;IACrE,SAAS,CAAC,iBAAiB,CAAC,YAAY,EAAE,KAAK,EAAE,MAAM,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAC,CAAC;IAEjF,+CAA+C;IAC/C,MAAM,IAAI,GAAG,mBAAmB,CAAC,aAAa,CAAC,WAAW,EAAE,gBAAgB,CAAC,WAAW,EAAE,SAAS,CAAC,CAAC;IACrG,MAAM,aAAa,GAAG,SAAS,CAAC,IAAI,UAAU,CAAC,YAAY,CAAC,EAAE,IAAI,CAAC,CAAC;IAEpE,0BAA0B;IAC1B,MAAM,OAAO,GAAG,IAAI,CAAC,SAAS,CAAC;QAC7B,UAAU,EAAE,MAAM,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC;QACtD,SAAS;KACV,CAAC,CAAC;IACH,MAAM,MAAM,GAAG,UAAU,CAAC,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,OAAO,CAAC,EAAE,mBAAmB,CAAC,CAAC;IAClF,MAAM,QAAQ,GAAG,IAAI,UAAU,CAAC,CAAC,CAAC,CAAC;IACnC,MAAM,EAAE,KAAK,EAAE,UAAU,EAAE,GAAG,EAAE,GAAG,WAAW,CAAC,aAAa,EAAE,MAAM,EAAE,QAAQ,CAAC,CAAC;IAEhF,yBAAyB;IACzB,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IACd,YAAY,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IACrB,aAAa,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAEtB,iEAAiE;IACjE,MAAM,MAAM,GAAG,IAAI,UAAU,CAAC,KAAK,CAAC,MAAM,GAAG,KAAK,CAAC,MAAM,GAAG,UAAU,CAAC,MAAM,GAAG,GAAG,CAAC,MAAM,CAAC,CAAC;IAC5F,IAAI,MAAM,GAAG,CAAC,CAAC;IACf,MAAM,CAAC,GAAG,CAAC,KAAK,EAAE,MAAM,CAAC,CAAC;IAAC,MAAM,IAAI,KAAK,CAAC,MAAM,CAAC;IAClD,MAAM,CAAC,GAAG,CAAC,KAAK,EAAE,MAAM,CAAC,CAAC;IAAC,MAAM,IAAI,KAAK,CAAC,MAAM,CAAC;IAClD,MAAM,CAAC,GAAG,CAAC,UAAU,EAAE,MAAM,CAAC,CAAC;IAAC,MAAM,IAAI,UAAU,CAAC,MAAM,CAAC;IAC5D,MAAM,CAAC,GAAG,CAAC,GAAG,EAAE,MAAM,CAAC,CAAC;IAExB,OAAO,MAAM,CAAC;AAChB,CAAC;AAED;;;;;;;;;GASG;AACH,MAAM,UAAU,cAAc,CAC5B,IAAgB,EAChB,kBAA8B,EAC9B,gBAA4B,EAC5B,aAAyB,EACzB,SAAiB;IAEjB,iBAAiB;IACjB,IAAI,MAAM,GAAG,CAAC,CAAC;IACf,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,EAAE,MAAM,GAAG,EAAE,CAAC,CAAC;IAAC,MAAM,IAAI,EAAE,CAAC;IAC5D,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,EAAE,MAAM,GAAG,EAAE,CAAC,CAAC;IAAC,MAAM,IAAI,EAAE,CAAC;IAC5D,MAAM,QAAQ,GAAG,IAAI,CAAC,MAAM,GAAG,EAAE,CAAC;IAClC,MAAM,UAAU,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,EAAE,QAAQ,CAAC,CAAC;IAChD,MAAM,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC;IAEjC,iDAAiD;IACjD,MAAM,iBAAiB,GAAG,wBAAwB,CAAC,kBAAkB,CAAC,CAAC;IAEvE,0EAA0E;IAC1E,MAAM,YAAY,GAAG,MAAM,CAAC,KAAK,CAAC,SAAS,CAAC,uBAAuB,CAAC,CAAC;IACrE,SAAS,CAAC,iBAAiB,CAAC,YAAY,EAAE,MAAM,CAAC,IAAI,CAAC,iBAAiB,CAAC,EAAE,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC;IAE9F,6BAA6B;IAC7B,MAAM,IAAI,GAAG,mBAAmB,CAAC,aAAa,CAAC,WAAW,EAAE,gBAAgB,CAAC,WAAW,EAAE,SAAS,CAAC,CAAC;IACrG,MAAM,aAAa,GAAG,SAAS,CAAC,IAAI,UAAU,CAAC,YAAY,CAAC,EAAE,IAAI,CAAC,CAAC;IAEpE,UAAU;IACV,MAAM,QAAQ,GAAG,IAAI,UAAU,CAAC,CAAC,CAAC,CAAC;IACnC,MAAM,MAAM,GAAG,WAAW,CAAC,aAAa,EAAE,KAAK,EAAE,UAAU,EAAE,GAAG,EAAE,QAAQ,CAAC,CAAC;IAE5E,yBAAyB;IACzB,YAAY,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IACrB,aAAa,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAEtB,gCAAgC;IAChC,MAAM,OAAO,GAAG,YAAY,CAAC,MAAM,CAAC,CAAC;IACrC,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,CAAC;IAC7D,OAAO,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,UAAU,EAAE,QAAQ,CAAC,CAAC;AAClD,CAAC;AAED;;;;;GAKG;AACH,SAAS,mBAAmB,CAAC,iBAAyB,EAAE,oBAA4B,EAAE,SAAiB;IACrG,MAAM,UAAU,GAAG,UAAU,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,iBAAiB,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;IAC7F,MAAM,aAAa,GAAG,UAAU,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,oBAAoB,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;IACnG,MAAM,WAAW,GAAG,UAAU,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;IACtF,OAAO,oBAAoB,UAAU,GAAG,aAAa,GAAG,WAAW,EAAE,CAAC;AACxE,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,UAAU,CAAC,OAAmB,EAAE,UAAkB;IAChE,IAAI,OAAO,CAAC,MAAM,GAAG,UAAU,GAAG,CAAC,EAAE,CAAC;QACpC,MAAM,IAAI,KAAK,CAAC,6BAA6B,OAAO,CAAC,MAAM,eAAe,UAAU,GAAG,CAAC,GAAG,CAAC,CAAC;IAC/F,CAAC;IAED,MAAM,MAAM,GAAG,IAAI,UAAU,CAAC,UAAU,CAAC,CAAC;IAC1C,2CAA2C;IAC3C,MAAM,IAAI,GAAG,IAAI,QAAQ,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;IACzC,IAAI,CAAC,SAAS,CAAC,CAAC,EAAE,OAAO,CAAC,MAAM,EAAE,KAAK,CAAC,CAAC;IACzC,MAAM,CAAC,GAAG,CAAC,OAAO,EAAE,CAAC,CAAC,CAAC;IAEvB,mCAAmC;IACnC,MAAM,aAAa,GAAG,WAAW,CAAC,UAAU,GAAG,CAAC,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;IACnE,MAAM,CAAC,GAAG,CAAC,aAAa,EAAE,CAAC,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;IAE9C,OAAO,MAAM,CAAC;AAChB,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,YAAY,CAAC,MAAkB;IAC7C,MAAM,IAAI,GAAG,IAAI,QAAQ,CAAC,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,UAAU,EAAE,MAAM,CAAC,UAAU,CAAC,CAAC;IAC/E,MAAM,MAAM,GAAG,IAAI,CAAC,SAAS,CAAC,CAAC,EAAE,KAAK,CAAC,CAAC;IAExC,IAAI,MAAM,GAAG,MAAM,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAC/B,MAAM,IAAI,KAAK,CAAC,iDAAiD,CAAC,CAAC;IACrE,CAAC;IAED,OAAO,MAAM,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,GAAG,MAAM,CAAC,CAAC;AACrC,CAAC"}

package/dist/crypto/keyring.d.ts

@@ -0,0 +1,37 @@
+import type { IKeyringService, ISecureBuffer } from './types.js';
+/**
+ * OS keyring integration via shell commands.
+ * Uses execFile (not exec) to prevent shell injection.
+ *
+ * macOS:  security add-generic-password / find-generic-password / delete-generic-password
+ * Linux:  secret-tool store / lookup / clear
+ * Windows: cmdkey /add: / /list: / /delete:
+ */
+export declare class KeyringService implements IKeyringService {
+    private readonly platform;
+    constructor(platform?: NodeJS.Platform);
+    /**
+     * Store a secret in the OS keyring.
+     */
+    store(service: string, account: string, secret: ISecureBuffer): Promise<void>;
+    /**
+     * Retrieve a secret from the OS keyring.
+     * Returns null if not found.
+     */
+    retrieve(service: string, account: string): Promise<ISecureBuffer | null>;
+    /**
+     * Delete a secret from the OS keyring.
+     * Returns true if deleted, false if not found.
+     */
+    delete(service: string, account: string): Promise<boolean>;
+    private storeMacOS;
+    private retrieveMacOS;
+    private deleteMacOS;
+    private storeLinux;
+    private retrieveLinux;
+    private deleteLinux;
+    private storeWindows;
+    private retrieveWindows;
+    private deleteWindows;
+}
+//# sourceMappingURL=keyring.d.ts.map

package/dist/crypto/keyring.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"keyring.d.ts","sourceRoot":"","sources":["../../crypto/keyring.ts"],"names":[],"mappings":"AAIA,OAAO,KAAK,EAAE,eAAe,EAAE,aAAa,EAAE,MAAM,YAAY,CAAC;AAIjE;;;;;;;GAOG;AACH,qBAAa,cAAe,YAAW,eAAe;IACpD,OAAO,CAAC,QAAQ,CAAC,QAAQ,CAAkB;gBAE/B,QAAQ,CAAC,EAAE,MAAM,CAAC,QAAQ;IAItC;;OAEG;IACG,KAAK,CAAC,OAAO,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,MAAM,EAAE,aAAa,GAAG,OAAO,CAAC,IAAI,CAAC;IAuBnF;;;OAGG;IACG,QAAQ,CAAC,OAAO,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,GAAG,OAAO,CAAC,aAAa,GAAG,IAAI,CAAC;IAyB/E;;;OAGG;IACG,MAAM,CAAC,OAAO,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;YAuBlD,UAAU;YAqBV,aAAa;YAUb,WAAW;YAUX,UAAU;YAkBV,aAAa;YASb,WAAW;YAUX,YAAY;YAWZ,eAAe;YA4Cf,aAAa;CAI5B"}

package/dist/crypto/keyring.js

@@ -0,0 +1,219 @@
+import { execFile } from 'node:child_process';
+import { promisify } from 'node:util';
+import { SecureBuffer } from './secure-buffer.js';
+const execFileAsync = promisify(execFile);
+/**
+ * OS keyring integration via shell commands.
+ * Uses execFile (not exec) to prevent shell injection.
+ *
+ * macOS:  security add-generic-password / find-generic-password / delete-generic-password
+ * Linux:  secret-tool store / lookup / clear
+ * Windows: cmdkey /add: / /list: / /delete:
+ */
+export class KeyringService {
+    platform;
+    constructor(platform) {
+        this.platform = platform ?? process.platform;
+    }
+    /**
+     * Store a secret in the OS keyring.
+     */
+    async store(service, account, secret) {
+        const secretHex = secret.buffer.toString('hex');
+        try {
+            switch (this.platform) {
+                case 'darwin':
+                    await this.storeMacOS(service, account, secretHex);
+                    break;
+                case 'linux':
+                    await this.storeLinux(service, account, secretHex);
+                    break;
+                case 'win32':
+                    await this.storeWindows(service, account, secretHex);
+                    break;
+                default:
+                    throw new Error(`Unsupported platform: ${this.platform}`);
+            }
+        }
+        finally {
+            // We can't zero the hex string (JS strings are immutable),
+            // but we at least don't hold onto it.
+        }
+    }
+    /**
+     * Retrieve a secret from the OS keyring.
+     * Returns null if not found.
+     */
+    async retrieve(service, account) {
+        try {
+            let secretHex;
+            switch (this.platform) {
+                case 'darwin':
+                    secretHex = await this.retrieveMacOS(service, account);
+                    break;
+                case 'linux':
+                    secretHex = await this.retrieveLinux(service, account);
+                    break;
+                case 'win32':
+                    secretHex = await this.retrieveWindows(service, account);
+                    break;
+                default:
+                    throw new Error(`Unsupported platform: ${this.platform}`);
+            }
+            const bytes = Buffer.from(secretHex.trim(), 'hex');
+            return SecureBuffer.from(bytes);
+        }
+        catch {
+            return null;
+        }
+    }
+    /**
+     * Delete a secret from the OS keyring.
+     * Returns true if deleted, false if not found.
+     */
+    async delete(service, account) {
+        try {
+            switch (this.platform) {
+                case 'darwin':
+                    await this.deleteMacOS(service, account);
+                    break;
+                case 'linux':
+                    await this.deleteLinux(service, account);
+                    break;
+                case 'win32':
+                    await this.deleteWindows(service, account);
+                    break;
+                default:
+                    throw new Error(`Unsupported platform: ${this.platform}`);
+            }
+            return true;
+        }
+        catch {
+            return false;
+        }
+    }
+    // --- macOS ---
+    async storeMacOS(service, account, secret) {
+        // Delete existing entry first (update = delete + add)
+        try {
+            await execFileAsync('security', [
+                'delete-generic-password',
+                '-s', service,
+                '-a', account,
+            ]);
+        }
+        catch {
+            // Ignore if not found
+        }
+        await execFileAsync('security', [
+            'add-generic-password',
+            '-s', service,
+            '-a', account,
+            '-w', secret,
+            '-U', // update if exists
+        ]);
+    }
+    async retrieveMacOS(service, account) {
+        const { stdout } = await execFileAsync('security', [
+            'find-generic-password',
+            '-s', service,
+            '-a', account,
+            '-w', // output password only
+        ]);
+        return stdout.trim();
+    }
+    async deleteMacOS(service, account) {
+        await execFileAsync('security', [
+            'delete-generic-password',
+            '-s', service,
+            '-a', account,
+        ]);
+    }
+    // --- Linux ---
+    async storeLinux(service, account, secret) {
+        // secret-tool reads from stdin
+        const child = execFileAsync('secret-tool', [
+            'store',
+            '--label', `${service}/${account}`,
+            'service', service,
+            'account', account,
+        ]);
+        // Write secret to stdin
+        if (child.child.stdin) {
+            child.child.stdin.write(secret);
+            child.child.stdin.end();
+        }
+        await child;
+    }
+    async retrieveLinux(service, account) {
+        const { stdout } = await execFileAsync('secret-tool', [
+            'lookup',
+            'service', service,
+            'account', account,
+        ]);
+        return stdout;
+    }
+    async deleteLinux(service, account) {
+        await execFileAsync('secret-tool', [
+            'clear',
+            'service', service,
+            'account', account,
+        ]);
+    }
+    // --- Windows ---
+    async storeWindows(service, account, secret) {
+        const target = `${service}/${account}`;
+        // Use PowerShell with .NET CredentialManager API (no external modules required)
+        const script = `
+      Add-Type -AssemblyName System.Runtime.InteropServices
+      $cred = New-Object System.Management.Automation.PSCredential('${account.replace(/'/g, "''")}', (ConvertTo-SecureString '${secret.replace(/'/g, "''")}' -AsPlainText -Force))
+      cmdkey /add:${target} /user:${account} /pass:${secret}
+    `.trim();
+        await execFileAsync('powershell', ['-NoProfile', '-Command', script]);
+    }
+    async retrieveWindows(service, account) {
+        const target = `${service}/${account}`;
+        // Use PowerShell with native .NET Credential API (no external modules needed)
+        const script = `
+      Add-Type @"
+        using System;
+        using System.Runtime.InteropServices;
+        public class CredentialHelper {
+          [DllImport("advapi32.dll", CharSet=CharSet.Unicode, SetLastError=true)]
+          public static extern bool CredReadW(string target, int type, int flags, out IntPtr credential);
+          [DllImport("advapi32.dll")]
+          public static extern void CredFree(IntPtr credential);
+          [StructLayout(LayoutKind.Sequential, CharSet=CharSet.Unicode)]
+          public struct CREDENTIAL {
+            public int Flags; public int Type;
+            public string TargetName; public string Comment;
+            public long LastWritten; public int CredentialBlobSize;
+            public IntPtr CredentialBlob; public int Persist;
+            public int AttributeCount; public IntPtr Attributes;
+            public string TargetAlias; public string UserName;
+          }
+          public static string Read(string target) {
+            IntPtr ptr;
+            if (!CredReadW(target, 1, 0, out ptr)) return "";
+            var cred = (CREDENTIAL)Marshal.PtrToStructure(ptr, typeof(CREDENTIAL));
+            var secret = Marshal.PtrToStringUni(cred.CredentialBlob, cred.CredentialBlobSize / 2);
+            CredFree(ptr);
+            return secret;
+          }
+        }
+"@
+      [CredentialHelper]::Read('${target.replace(/'/g, "''")}')
+    `.trim();
+        const { stdout } = await execFileAsync('powershell', ['-NoProfile', '-Command', script]);
+        const result = stdout.trim();
+        if (!result) {
+            throw new Error(`Credential not found: ${target}`);
+        }
+        return result;
+    }
+    async deleteWindows(service, account) {
+        const target = `${service}/${account}`;
+        await execFileAsync('cmdkey', ['/delete:' + target]);
+    }
+}
+//# sourceMappingURL=keyring.js.map

package/dist/crypto/keyring.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"keyring.js","sourceRoot":"","sources":["../../crypto/keyring.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,MAAM,oBAAoB,CAAC;AAC9C,OAAO,EAAE,SAAS,EAAE,MAAM,WAAW,CAAC;AAEtC,OAAO,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AAGlD,MAAM,aAAa,GAAG,SAAS,CAAC,QAAQ,CAAC,CAAC;AAE1C;;;;;;;GAOG;AACH,MAAM,OAAO,cAAc;IACR,QAAQ,CAAkB;IAE3C,YAAY,QAA0B;QACpC,IAAI,CAAC,QAAQ,GAAG,QAAQ,IAAI,OAAO,CAAC,QAAQ,CAAC;IAC/C,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,KAAK,CAAC,OAAe,EAAE,OAAe,EAAE,MAAqB;QACjE,MAAM,SAAS,GAAG,MAAM,CAAC,MAAM,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;QAEhD,IAAI,CAAC;YACH,QAAQ,IAAI,CAAC,QAAQ,EAAE,CAAC;gBACtB,KAAK,QAAQ;oBACX,MAAM,IAAI,CAAC,UAAU,CAAC,OAAO,EAAE,OAAO,EAAE,SAAS,CAAC,CAAC;oBACnD,MAAM;gBACR,KAAK,OAAO;oBACV,MAAM,IAAI,CAAC,UAAU,CAAC,OAAO,EAAE,OAAO,EAAE,SAAS,CAAC,CAAC;oBACnD,MAAM;gBACR,KAAK,OAAO;oBACV,MAAM,IAAI,CAAC,YAAY,CAAC,OAAO,EAAE,OAAO,EAAE,SAAS,CAAC,CAAC;oBACrD,MAAM;gBACR;oBACE,MAAM,IAAI,KAAK,CAAC,yBAAyB,IAAI,CAAC,QAAQ,EAAE,CAAC,CAAC;YAC9D,CAAC;QACH,CAAC;gBAAS,CAAC;YACT,2DAA2D;YAC3D,sCAAsC;QACxC,CAAC;IACH,CAAC;IAED;;;OAGG;IACH,KAAK,CAAC,QAAQ,CAAC,OAAe,EAAE,OAAe;QAC7C,IAAI,CAAC;YACH,IAAI,SAAiB,CAAC;YAEtB,QAAQ,IAAI,CAAC,QAAQ,EAAE,CAAC;gBACtB,KAAK,QAAQ;oBACX,SAAS,GAAG,MAAM,IAAI,CAAC,aAAa,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;oBACvD,MAAM;gBACR,KAAK,OAAO;oBACV,SAAS,GAAG,MAAM,IAAI,CAAC,aAAa,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;oBACvD,MAAM;gBACR,KAAK,OAAO;oBACV,SAAS,GAAG,MAAM,IAAI,CAAC,eAAe,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;oBACzD,MAAM;gBACR;oBACE,MAAM,IAAI,KAAK,CAAC,yBAAyB,IAAI,CAAC,QAAQ,EAAE,CAAC,CAAC;YAC9D,CAAC;YAED,MAAM,KAAK,GAAG,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,IAAI,EAAE,EAAE,KAAK,CAAC,CAAC;YACnD,OAAO,YAAY,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QAClC,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,IAAI,CAAC;QACd,CAAC;IACH,CAAC;IAED;;;OAGG;IACH,KAAK,CAAC,MAAM,CAAC,OAAe,EAAE,OAAe;QAC3C,IAAI,CAAC;YACH,QAAQ,IAAI,CAAC,QAAQ,EAAE,CAAC;gBACtB,KAAK,QAAQ;oBACX,MAAM,IAAI,CAAC,WAAW,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;oBACzC,MAAM;gBACR,KAAK,OAAO;oBACV,MAAM,IAAI,CAAC,WAAW,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;oBACzC,MAAM;gBACR,KAAK,OAAO;oBACV,MAAM,IAAI,CAAC,aAAa,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;oBAC3C,MAAM;gBACR;oBACE,MAAM,IAAI,KAAK,CAAC,yBAAyB,IAAI,CAAC,QAAQ,EAAE,CAAC,CAAC;YAC9D,CAAC;YACD,OAAO,IAAI,CAAC;QACd,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,KAAK,CAAC;QACf,CAAC;IACH,CAAC;IAED,gBAAgB;IAER,KAAK,CAAC,UAAU,CAAC,OAAe,EAAE,OAAe,EAAE,MAAc;QACvE,sDAAsD;QACtD,IAAI,CAAC;YACH,MAAM,aAAa,CAAC,UAAU,EAAE;gBAC9B,yBAAyB;gBACzB,IAAI,EAAE,OAAO;gBACb,IAAI,EAAE,OAAO;aACd,CAAC,CAAC;QACL,CAAC;QAAC,MAAM,CAAC;YACP,sBAAsB;QACxB,CAAC;QAED,MAAM,aAAa,CAAC,UAAU,EAAE;YAC9B,sBAAsB;YACtB,IAAI,EAAE,OAAO;YACb,IAAI,EAAE,OAAO;YACb,IAAI,EAAE,MAAM;YACZ,IAAI,EAAE,mBAAmB;SAC1B,CAAC,CAAC;IACL,CAAC;IAEO,KAAK,CAAC,aAAa,CAAC,OAAe,EAAE,OAAe;QAC1D,MAAM,EAAE,MAAM,EAAE,GAAG,MAAM,aAAa,CAAC,UAAU,EAAE;YACjD,uBAAuB;YACvB,IAAI,EAAE,OAAO;YACb,IAAI,EAAE,OAAO;YACb,IAAI,EAAE,uBAAuB;SAC9B,CAAC,CAAC;QACH,OAAO,MAAM,CAAC,IAAI,EAAE,CAAC;IACvB,CAAC;IAEO,KAAK,CAAC,WAAW,CAAC,OAAe,EAAE,OAAe;QACxD,MAAM,aAAa,CAAC,UAAU,EAAE;YAC9B,yBAAyB;YACzB,IAAI,EAAE,OAAO;YACb,IAAI,EAAE,OAAO;SACd,CAAC,CAAC;IACL,CAAC;IAED,gBAAgB;IAER,KAAK,CAAC,UAAU,CAAC,OAAe,EAAE,OAAe,EAAE,MAAc;QACvE,+BAA+B;QAC/B,MAAM,KAAK,GAAG,aAAa,CAAC,aAAa,EAAE;YACzC,OAAO;YACP,SAAS,EAAE,GAAG,OAAO,IAAI,OAAO,EAAE;YAClC,SAAS,EAAE,OAAO;YAClB,SAAS,EAAE,OAAO;SACnB,CAAC,CAAC;QAEH,wBAAwB;QACxB,IAAI,KAAK,CAAC,KAAK,CAAC,KAAK,EAAE,CAAC;YACtB,KAAK,CAAC,KAAK,CAAC,KAAK,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;YAChC,KAAK,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC;QAC1B,CAAC;QAED,MAAM,KAAK,CAAC;IACd,CAAC;IAEO,KAAK,CAAC,aAAa,CAAC,OAAe,EAAE,OAAe;QAC1D,MAAM,EAAE,MAAM,EAAE,GAAG,MAAM,aAAa,CAAC,aAAa,EAAE;YACpD,QAAQ;YACR,SAAS,EAAE,OAAO;YAClB,SAAS,EAAE,OAAO;SACnB,CAAC,CAAC;QACH,OAAO,MAAM,CAAC;IAChB,CAAC;IAEO,KAAK,CAAC,WAAW,CAAC,OAAe,EAAE,OAAe;QACxD,MAAM,aAAa,CAAC,aAAa,EAAE;YACjC,OAAO;YACP,SAAS,EAAE,OAAO;YAClB,SAAS,EAAE,OAAO;SACnB,CAAC,CAAC;IACL,CAAC;IAED,kBAAkB;IAEV,KAAK,CAAC,YAAY,CAAC,OAAe,EAAE,OAAe,EAAE,MAAc;QACzE,MAAM,MAAM,GAAG,GAAG,OAAO,IAAI,OAAO,EAAE,CAAC;QACvC,gFAAgF;QAChF,MAAM,MAAM,GAAG;;sEAEmD,OAAO,CAAC,OAAO,CAAC,IAAI,EAAE,IAAI,CAAC,+BAA+B,MAAM,CAAC,OAAO,CAAC,IAAI,EAAE,IAAI,CAAC;oBACtI,MAAM,UAAU,OAAO,UAAU,MAAM;KACtD,CAAC,IAAI,EAAE,CAAC;QACT,MAAM,aAAa,CAAC,YAAY,EAAE,CAAC,YAAY,EAAE,UAAU,EAAE,MAAM,CAAC,CAAC,CAAC;IACxE,CAAC;IAEO,KAAK,CAAC,eAAe,CAAC,OAAe,EAAE,OAAe;QAC5D,MAAM,MAAM,GAAG,GAAG,OAAO,IAAI,OAAO,EAAE,CAAC;QACvC,8EAA8E;QAC9E,MAAM,MAAM,GAAG;;;;;;;;;;;;;;;;;;;;;;;;;;;;kCA4Be,MAAM,CAAC,OAAO,CAAC,IAAI,EAAE,IAAI,CAAC;KACvD,CAAC,IAAI,EAAE,CAAC;QAET,MAAM,EAAE,MAAM,EAAE,GAAG,MAAM,aAAa,CAAC,YAAY,EAAE,CAAC,YAAY,EAAE,UAAU,EAAE,MAAM,CAAC,CAAC,CAAC;QACzF,MAAM,MAAM,GAAG,MAAM,CAAC,IAAI,EAAE,CAAC;QAE7B,IAAI,CAAC,MAAM,EAAE,CAAC;YACZ,MAAM,IAAI,KAAK,CAAC,yBAAyB,MAAM,EAAE,CAAC,CAAC;QACrD,CAAC;QAED,OAAO,MAAM,CAAC;IAChB,CAAC;IAEO,KAAK,CAAC,aAAa,CAAC,OAAe,EAAE,OAAe;QAC1D,MAAM,MAAM,GAAG,GAAG,OAAO,IAAI,OAAO,EAAE,CAAC;QACvC,MAAM,aAAa,CAAC,QAAQ,EAAE,CAAC,UAAU,GAAG,MAAM,CAAC,CAAC,CAAC;IACvD,CAAC;CACF"}

package/dist/crypto/known-keys.d.ts

@@ -0,0 +1,34 @@
+interface PinnedKey {
+    fingerprint: string;
+    publicKey: string;
+    source: string;
+    firstSeen: string;
+    verifiedAt: string;
+}
+/**
+ * Pin a key for an identifier (e.g., "github:alice").
+ * Throws if the identifier is already pinned with a different fingerprint.
+ */
+export declare function pinKey(identifier: string, fingerprint: string, publicKey: string, source: string): void;
+/**
+ * Get a pinned key by identifier.
+ */
+export declare function getPinnedKey(identifier: string): PinnedKey | null;
+/**
+ * Check a key against the pin store.
+ */
+export declare function checkKeyPin(identifier: string, fingerprint: string): 'match' | 'mismatch' | 'new';
+/**
+ * Update a pinned key after verified rotation (e.g., new key confirmed on GitHub).
+ */
+export declare function updatePinnedKey(identifier: string, fingerprint: string, publicKey: string, source: string): void;
+export declare class KeyMismatchError extends Error {
+    readonly identifier: string;
+    readonly pinnedFingerprint: string;
+    readonly newFingerprint: string;
+    readonly pinnedSource: string;
+    readonly newSource: string;
+    constructor(identifier: string, pinnedFingerprint: string, newFingerprint: string, pinnedSource: string, newSource: string);
+}
+export {};
+//# sourceMappingURL=known-keys.d.ts.map

package/dist/crypto/known-keys.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"known-keys.d.ts","sourceRoot":"","sources":["../../crypto/known-keys.ts"],"names":[],"mappings":"AAQA,UAAU,SAAS;IACjB,WAAW,EAAE,MAAM,CAAC;IACpB,SAAS,EAAE,MAAM,CAAC;IAClB,MAAM,EAAE,MAAM,CAAC;IACf,SAAS,EAAE,MAAM,CAAC;IAClB,UAAU,EAAE,MAAM,CAAC;CACpB;AA2BD;;;GAGG;AACH,wBAAgB,MAAM,CACpB,UAAU,EAAE,MAAM,EAClB,WAAW,EAAE,MAAM,EACnB,SAAS,EAAE,MAAM,EACjB,MAAM,EAAE,MAAM,GACb,IAAI,CA8BN;AAED;;GAEG;AACH,wBAAgB,YAAY,CAAC,UAAU,EAAE,MAAM,GAAG,SAAS,GAAG,IAAI,CAGjE;AAED;;GAEG;AACH,wBAAgB,WAAW,CACzB,UAAU,EAAE,MAAM,EAClB,WAAW,EAAE,MAAM,GAClB,OAAO,GAAG,UAAU,GAAG,KAAK,CAO9B;AAED;;GAEG;AACH,wBAAgB,eAAe,CAC7B,UAAU,EAAE,MAAM,EAClB,WAAW,EAAE,MAAM,EACnB,SAAS,EAAE,MAAM,EACjB,MAAM,EAAE,MAAM,GACb,IAAI,CAUN;AAED,qBAAa,gBAAiB,SAAQ,KAAK;aAEvB,UAAU,EAAE,MAAM;aAClB,iBAAiB,EAAE,MAAM;aACzB,cAAc,EAAE,MAAM;aACtB,YAAY,EAAE,MAAM;aACpB,SAAS,EAAE,MAAM;gBAJjB,UAAU,EAAE,MAAM,EAClB,iBAAiB,EAAE,MAAM,EACzB,cAAc,EAAE,MAAM,EACtB,YAAY,EAAE,MAAM,EACpB,SAAS,EAAE,MAAM;CAUpC"}