npm - @vailix/mask - Versions diffs - 0.1.2 - Mend

@vailix/mask 0.1.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (20) hide show

package/ANALYSIS_REPORT.md +211 -0
package/BLE_IMPLEMENTATION_PLAN.md +703 -0
package/CHANGELOG.md +13 -0
package/LICENSE +21 -0
package/README.md +365 -0
package/dist/index.d.mts +347 -0
package/dist/index.d.ts +347 -0
package/dist/index.js +1095 -0
package/dist/index.mjs +1058 -0
package/package.json +62 -0
package/src/ble.ts +504 -0
package/src/db.ts +57 -0
package/src/identity.ts +91 -0
package/src/index.ts +375 -0
package/src/matcher.ts +224 -0
package/src/storage.ts +110 -0
package/src/transport.ts +20 -0
package/src/types.ts +100 -0
package/src/utils.ts +20 -0
package/tsconfig.json +15 -0

package/ANALYSIS_REPORT.md ADDED Viewed

@@ -0,0 +1,211 @@
+# @vailix/mask - Code Analysis Report
+**Date:** January 7, 2026
+**Reviewer:** AI Code Review
+**Package Version:** 0.2.0
+**Status:** Post-BLE Migration Review
+---
+## Executive Summary
+The `@vailix/mask` package implementation follows the `core_framework_plan.md` specification. NFC pairing has been replaced with BLE-based proximity discovery. This analysis identified **1 bug** and **2 code issues** that were fixed, plus **1 remaining question**.
+| Category | Count | Status |
+|----------|-------|--------|
+| Bugs | 1 | ✅ Fixed |
+| Code Issues | 2 | ✅ Fixed |
+| Questions | 1 | 🔵 Open |
+---
+## ✅ Fixed Issues
+### BUG-001: Binary parsing lacks bounds checking ✅ FIXED
+**File:** `src/matcher.ts`
+**Severity:** High - Would crash on malformed server response
+**Problem:** The `_parseBinaryResponse` method read from the buffer without verifying there are enough bytes remaining.
+**Fix Applied:** Added bounds checking before reading each key and during metadata extraction.
+---
+### ISSUE-001: QR expiry was hardcoded, not tied to RPI duration ✅ FIXED
+**File:** `src/index.ts`
+**Severity:** Medium
+**Problem:** QR codes expired after 15 minutes regardless of configured `rpiDurationMs`.
+**Fix Applied:** QR expiry now uses `this.rpiDurationMs` instead of hardcoded constant.
+---
+### ISSUE-003: UTF-8 metadata corruption with fallback decoder ✅ FIXED
+**File:** `src/matcher.ts`
+**Severity:** Medium
+**Problem:** `String.fromCharCode()` doesn't handle multi-byte UTF-8 characters correctly.
+**Fix Applied:** Replaced with `new TextDecoder('utf-8').decode(metaBytes)`.
+---
+## ❌ Removed Issues (No Longer Applicable)
+The following issues were related to NFC and are no longer relevant after migration to BLE:
+| Issue | Reason Removed |
+|-------|----------------|
+| ISSUE-002: NFC timestamp validation | NFC removed, replaced by BLE |
+| ISSUE-004: NFC bidirectional exchange limitations | NFC removed, replaced by BLE |
+| Q-002: NFC timestamp validation approach | NFC removed |
+| Q-003: NFC bidirectional exchange flow | NFC removed |
+---
+## ✅ All Questions Resolved
+### Q-004: Type safety - `getMatchingScans` returns `any[]` ✅ FIXED
+**File:** `src/storage.ts`
+**Line:** 81
+**Fix Applied:** Added `ScannedEvent` type alias using Drizzle's `$inferSelect` and updated method signature to `Promise<ScannedEvent[]>`.
+---
+## ✅ Verified Correct
+| Component | Status | Notes |
+|-----------|--------|-------|
+| HMAC-SHA256 RPI generation | ✅ | 128-bit output, epoch-based |
+| AES-256-GCM encryption | ✅ | Correct IV size (12 bytes), auth tag handling |
+| SQLCipher database encryption | ✅ | Master key validated, key mismatch handled |
+| Rescan protection | ✅ | Configurable interval, persisted to AsyncStorage |
+| Memory-bounded scan history | ✅ | MAX_SCAN_HISTORY_SIZE = 10000 |
+| Pagination handling | ✅ | Cursor-based, 500 batch size for SQLite |
+| 14-day cleanup | ✅ | Automatic on SDK init |
+| Event handler cleanup | ✅ | Returns unsubscribe function for React |
+| Config validation | ✅ | rescanInterval ≤ rpiDuration enforced |
+| Binary format parsing | ✅ | Bounds checking added |
+| BLE discovery | ✅ | Service UUID filtering, RSSI proximity |
+| BLE pairing exchange | ✅ | GATT read/write, bidirectional |
+| Display name generation | ✅ | Deterministic from RPI prefix |
+| Stale user cleanup | ✅ | Configurable timeout |
+| Explicit consent mode | ✅ | `autoAcceptIncomingPairs` config |
+---
+## BLE Implementation Summary
+### New Files
+| File | Lines | Purpose |
+|------|-------|---------|
+| `src/ble.ts` | 539 | BLE discovery and pairing service |
+### Removed Files
+| File | Reason |
+|------|--------|
+| `src/nfc.ts` | Replaced by BLE |
+### New Types
+```typescript
+interface NearbyUser {
+    id: string;
+    displayName: string;
+    rssi: number;
+    discoveredAt: number;
+    paired: boolean;
+    hasIncomingRequest: boolean;
+}
+interface PairResult {
+    success: boolean;
+    partnerRpi?: string;
+    partnerMetadataKey?: string;
+    error?: string;
+}
+interface VailixConfig {
+    // Backend & Auth
+    reportUrl: string;
+    downloadUrl: string;
+    appSecret: string;
+    // Storage
+    keyStorage?: KeyStorage;
+    reportDays?: number;
+    // Contact Tracing
+    rpiDurationMs?: number;
+    rescanIntervalMs?: number;
+    // BLE
+    bleDiscoveryTimeoutMs?: number;
+    proximityThreshold?: number;
+    autoAcceptIncomingPairs?: boolean;
+}
+```
+### New SDK Methods
+| Method | Description |
+|--------|-------------|
+| `VailixSDK.isBleSupported()` | Check BLE availability |
+| `sdk.startDiscovery()` | Start BLE scanning |
+| `sdk.stopDiscovery()` | Stop BLE scanning |
+| `sdk.getNearbyUsers()` | Get nearby user list |
+| `sdk.onNearbyUsersChanged(cb)` | Subscribe to updates |
+| `sdk.pairWithUser(userId)` | Pair with user |
+| `sdk.unpairUser(userId)` | Unpair/reject user |
+### Removed SDK Methods
+| Method | Replacement |
+|--------|-------------|
+| `VailixSDK.isNfcSupported()` | `VailixSDK.isBleSupported()` |
+| `sdk.pairViaNfc()` | `sdk.pairWithUser(userId)` |
+---
+## Action Items
+### Completed
+- [x] **BUG-001:** Add bounds checking to binary response parser
+- [x] **ISSUE-001:** Tie QR expiry to RPI duration
+- [x] **ISSUE-003:** Use TextDecoder instead of String.fromCharCode
+- [x] **ISSUE-002:** NFC timestamp validation — N/A (NFC removed)
+- [x] **ISSUE-004:** NFC bidirectional exchange — N/A (NFC removed)
+- [x] **Q-001:** QR expiry approach — Tied to RPI duration
+- [x] **Q-002:** NFC timestamp validation — N/A (NFC removed)
+- [x] **Q-003:** NFC bidirectional exchange — N/A (NFC removed)
+### Open
+- [x] **Q-004:** Add proper return type to `getMatchingScans` ✅ FIXED
+---
+## Appendix: File Inventory
+| File | Lines | Purpose |
+|------|-------|---------|
+| `src/index.ts` | 321 | SDK entry point, VailixSDK class |
+| `src/identity.ts` | 81 | Master key & RPI generation |
+| `src/storage.ts` | 99 | SQLite storage, rescan protection |
+| `src/matcher.ts` | 176 | Server sync, binary parsing, decryption |
+| `src/ble.ts` | 539 | BLE discovery and pairing service |
+| `src/transport.ts` | 21 | QR code format/parse |
+| `src/db.ts` | 58 | SQLCipher database initialization |
+| `src/types.ts` | 96 | TypeScript interfaces |
+| `package.json` | 47 | Dependencies + scripts |
+| `tsconfig.json` | 15 | TypeScript config |
+| `README.md` | 366 | Comprehensive documentation |
+| `BLE_IMPLEMENTATION_PLAN.md` | 704 | BLE architecture and design decisions |
+---
+*Report updated after NFC → BLE migration. January 7, 2026.*