@otoplo/wallet-common 0.1.3 → 0.1.5

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@otoplo/wallet-common",
-  "version": "0.1.3",
+  "version": "0.1.5",
   "description": "Shared common library for internal use in Otoplo wallet",
   "license": "MIT",
   "author": "vgrunner",
@@ -28,7 +28,7 @@
   },
   "repository": {
     "type": "git",
-    "url": "https://gitlab.com/nexa/otoplo/otoplo-wallet-common"
+    "url": "git+https://gitlab.com/nexa/otoplo/otoplo-wallet-common.git"
   },
   "dependencies": {
     "@noble/ciphers": "^2.1.1",

package/src/utils/seed.ts

@@ -1,6 +1,5 @@
 import { gcm } from "@noble/ciphers/aes.js";
-import { pbkdf2Async } from "@noble/hashes/pbkdf2.js";
-import { sha256 } from "@noble/hashes/sha2.js";
+import { argon2idAsync } from "@noble/hashes/argon2.js";
 import { generateMnemonic, validateMnemonic } from "@scure/bip39";
 import { wordlist } from "@scure/bip39/wordlists/english.js";
 import { BufferUtils } from "libnexa-ts";
@@ -13,8 +12,8 @@ export function isMnemonicValid(mnemonic: string): boolean {
   return validateMnemonic(mnemonic, wordlist);
 }
 
-async function deriveKey(password: string, salt: Uint8Array): Promise<Uint8Array> {
-  return pbkdf2Async(sha256, password, salt, { c: 600_000, dkLen: 32 });
+function deriveKey(password: string, salt: Uint8Array): Promise<Uint8Array> {
+  return argon2idAsync(password, salt, { t: 2, m: 19456, p: 1, dkLen: 32 });
 }
 
 export async function encryptMnemonic(phrase: string, password: string): Promise<string> {
@@ -42,7 +41,7 @@ async function decryptMnemonic(encSeed: string, password: string): Promise<strin
   return BufferUtils.bufferToUtf8(data);
 }
 
-export async function validateAndDecryptMnemonic(encSeed: string, password: string): Promise<string | boolean> {
+export async function validateAndDecryptMnemonic(encSeed: string, password: string): Promise<string | false> {
   try {
     if (encSeed) {
       const decMn = await decryptMnemonic(encSeed, password);