cryptoserve 0.1.0 → 0.1.2

package/lib/pqc-engine.mjs

@@ -473,12 +473,15 @@ function generateMigrationPlan(libraries, classifications, sndl) {
 
 function calculateQuantumScore(libraries, classifications) {
   if (libraries.length === 0) return 100.0;
+  if (classifications.length === 0) return 100.0;
 
-  const safe = libraries.filter(
-    lib => ['none', 'low'].includes((lib.quantumRisk || '').toLowerCase())
+  // Score by individual algorithm classifications, not library count.
+  // A project with 5 symmetric + 1 asymmetric algorithm is mostly ready, not 0%.
+  const safe = classifications.filter(
+    c => c.category !== 'asymmetric' || c.category === 'pqc'
   ).length;
-  const vulnerable = libraries.filter(
-    lib => ['high', 'critical'].includes((lib.quantumRisk || '').toLowerCase())
+  const vulnerable = classifications.filter(
+    c => c.category === 'asymmetric'
   ).length;
   const total = safe + vulnerable;
 

package/lib/scanner.mjs

@@ -51,9 +51,15 @@ const IMPORT_PATTERNS = [
   { pattern: /createDecipheriv\s*\(/g, lib: 'node:crypto', detail: 'cipher' },
   { pattern: /createSign\s*\(/g, lib: 'node:crypto', detail: 'signature' },
   { pattern: /createVerify\s*\(/g, lib: 'node:crypto', detail: 'signature' },
+  { pattern: /createHash\s*\(/g, lib: 'node:crypto', detail: 'hash' },
+  { pattern: /createHmac\s*\(/g, lib: 'node:crypto', detail: 'hmac' },
   { pattern: /generateKeyPair(?:Sync)?\s*\(/g, lib: 'node:crypto', detail: 'keygen' },
+  { pattern: /createDiffieHellman(?:Group)?\s*\(/g, lib: 'node:crypto', detail: 'keyagreement' },
+  { pattern: /createECDH\s*\(/g, lib: 'node:crypto', detail: 'keyagreement' },
   { pattern: /scrypt(?:Sync)?\s*\(/g, lib: 'node:crypto', detail: 'kdf' },
   { pattern: /pbkdf2(?:Sync)?\s*\(/g, lib: 'node:crypto', detail: 'kdf' },
+  { pattern: /randomBytes\s*\(/g, lib: 'node:crypto', detail: 'random' },
+  { pattern: /randomUUID\s*\(/g, lib: 'node:crypto', detail: 'random' },
   { pattern: /createCipher\s*\(/g, lib: 'node:crypto', detail: 'DEPRECATED-no-iv' },
   { pattern: /CryptoJS\./g, lib: 'crypto-js' },
   { pattern: /forge\.\w+/g, lib: 'node-forge' },
@@ -69,6 +75,10 @@ const ALGO_LITERALS = [
   { pattern: /['"`]sha(?:256|384|512|1)['"`]/gi, algo: 'SHA-256' },
   { pattern: /['"`](?:HS|RS|ES|PS)(?:256|384|512)['"`]/gi, algo: 'RS256' },
   { pattern: /['"`]ed25519['"`]/gi, algo: 'Ed25519' },
+  { pattern: /['"`]x25519['"`]/gi, algo: 'X25519' },
+  { pattern: /['"`](?:ecdsa|ecdh|ec|secp256k1|secp384r1|prime256v1)['"`]/gi, algo: 'ECDSA' },
+  { pattern: /['"`](?:rsa|rsa-pss)['"`]/gi, algo: 'RSA' },
+  { pattern: /['"`](?:dsa)['"`]/gi, algo: 'DSA' },
   { pattern: /minVersion:\s*['"`]TLSv1\.[0-3]['"`]/g, algo: 'TLS' },
   { pattern: /['"`](?:md5|MD5)['"`]/g, algo: 'MD5' },
   { pattern: /['"`](?:des|DES|3des|3DES|des-ede3)['"`]/gi, algo: 'DES' },
@@ -281,11 +291,17 @@ export function scanProject(projectDir) {
     if (seenImports.has('node:crypto:') || seenImports.has('node:crypto:cipher')) {
       if (!nodeCryptoAlgos.includes('AES')) nodeCryptoAlgos.push('AES');
     }
+    if (seenImports.has('node:crypto:') || seenImports.has('node:crypto:hash') || seenImports.has('node:crypto:hmac')) {
+      if (!nodeCryptoAlgos.includes('SHA-256')) nodeCryptoAlgos.push('SHA-256');
+    }
     if (seenImports.has('node:crypto:signature')) {
       if (!nodeCryptoAlgos.includes('RSA')) nodeCryptoAlgos.push('RSA');
     }
+    if (seenImports.has('node:crypto:keygen') || seenImports.has('node:crypto:keyagreement')) {
+      if (!nodeCryptoAlgos.includes('ECDSA')) nodeCryptoAlgos.push('ECDSA');
+    }
     if (seenImports.has('node:crypto:kdf')) {
-      nodeCryptoAlgos.push('scrypt');
+      if (!nodeCryptoAlgos.includes('scrypt')) nodeCryptoAlgos.push('scrypt');
     }
 
     if (nodeCryptoAlgos.length > 0) {

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "cryptoserve",
-  "version": "0.1.0",
+  "version": "0.1.2",
   "description": "CryptoServe CLI - Cryptographic scanning, PQC analysis, encryption, and local key management",
   "type": "module",
   "bin": {