fuse-core-express 1.0.2 → 1.0.4

package/decryptor.js

@@ -0,0 +1,106 @@
+
+// FuseCore Secure Decryptor - 二进制格式
+// 使用接收者私钥解密，使用签名者公钥验证
+
+const crypto = require('crypto');
+const fs = require('fs');
+const { createGunzip } = require('zlib');
+const { promisify } = require('util');
+
+class SecureDecryptor {
+    constructor(recipientPrivateKey, signerPublicKey) {
+        this.recipientPrivateKey = recipientPrivateKey;
+        this.signerPublicKey = signerPublicKey;
+    }
+
+    async decompressData(compressedData) {
+        return new Promise((resolve, reject) => {
+            const gunzip = createGunzip();
+            const chunks = [];
+            
+            gunzip.on('data', chunk => chunks.push(chunk));
+            gunzip.on('end', () => resolve(Buffer.concat(chunks)));
+            gunzip.on('error', reject);
+            
+            gunzip.write(compressedData);
+            gunzip.end();
+        });
+    }
+
+    async decrypt(packagePath) {
+        console.log('🔓 Starting decryption process...');
+        
+        // 1. 读取二进制加密包
+        const binaryData = fs.readFileSync(packagePath);
+        
+        // 2. 解析二进制格式
+        // 格式: [元数据长度(4字节)][元数据][签名长度(4字节)][签名][IV长度(4字节)][IV][加密密钥长度(4字节)][加密密钥][认证标签长度(4字节)][认证标签][密文长度(4字节)][密文]
+        
+        let offset = 0;
+        
+        // 读取元数据
+        const metaLength = binaryData.readUInt32BE(offset);
+        offset += 4;
+        const metaBuf = binaryData.slice(offset, offset + metaLength);
+        offset += metaLength;
+        
+        // 读取签名
+        const signatureLength = binaryData.readUInt32BE(offset);
+        offset += 4;
+        const signature = binaryData.slice(offset, offset + signatureLength);
+        offset += signatureLength;
+        
+        // 读取IV
+        const ivLength = binaryData.readUInt32BE(offset);
+        offset += 4;
+        const iv = binaryData.slice(offset, offset + ivLength);
+        offset += ivLength;
+        
+        // 读取加密密钥
+        const encKeyLength = binaryData.readUInt32BE(offset);
+        offset += 4;
+        const encKey = binaryData.slice(offset, offset + encKeyLength);
+        offset += encKeyLength;
+        
+        // 读取认证标签
+        const authTagLength = binaryData.readUInt32BE(offset);
+        offset += 4;
+        const authTag = binaryData.slice(offset, offset + authTagLength);
+        offset += authTagLength;
+        
+        // 读取密文
+        const ciphertextLength = binaryData.readUInt32BE(offset);
+        offset += 4;
+        const ciphertext = binaryData.slice(offset, offset + ciphertextLength);
+
+        // 3. 解密AES密钥
+        const aesKey = crypto.privateDecrypt({
+            key: this.recipientPrivateKey,
+            padding: crypto.constants.RSA_PKCS1_OAEP_PADDING,
+        }, encKey);
+
+        // 4. 验证签名（在解密之前）
+        const toVerify = Buffer.concat([ciphertext, authTag, encKey, iv, metaBuf]);
+        const isValid = crypto.verify('sha256', toVerify, {
+            key: this.signerPublicKey,
+            padding: crypto.constants.RSA_PKCS1_PSS_PADDING,
+        }, signature);
+        
+        if (!isValid) {
+            throw new Error('❌ Signature verification failed');
+        }
+
+        // 5. 使用IV解密数据
+        const decipher = crypto.createDecipheriv('aes-256-gcm', aesKey, iv);
+        decipher.setAuthTag(authTag);
+        const decrypted = Buffer.concat([decipher.update(ciphertext), decipher.final()]);
+
+        // 6. 解压缩
+        const decompressed = await this.decompressData(decrypted);
+        
+        console.log('✅ Decryption completed successfully');
+        return JSON.parse(decompressed.toString());
+    }
+}
+
+module.exports = SecureDecryptor;

package/{index.mjs → index.js}

@@ -2,11 +2,12 @@
  * FuseCore Encrypted Entry Point
  * 加密版本入口文件 - 解密后代理到原始API
  */
-import { createDecryptLoader } from "./decrypt-loader.mjs";
-import path from "path";
-import fs from "fs";
-import { fileURLToPath } from "url";
-import { EventEmitter } from "events";
+import crypto from 'crypto';
+import fs from 'fs';
+import path from 'path';
+import { createGunzip } from 'zlib';
+import { fileURLToPath } from 'url';
+import { EventEmitter } from 'events';
 
 const __filename = fileURLToPath(import.meta.url);
 const __dirname = path.dirname(__filename);
@@ -26,21 +27,7 @@ const TEMP_DIR = path.join(__dirname, '.temp_fusecore');
 function cleanupTempFiles() {
     if (fs.existsSync(TEMP_DIR)) {
         try {
-            const cleanupDir = (dir) => {
-                const files = fs.readdirSync(dir);
-                for (const file of files) {
-                    const filePath = path.join(dir, file);
-                    const stat = fs.statSync(filePath);
-                    if (stat.isDirectory()) {
-                        cleanupDir(filePath);
-                        fs.rmdirSync(filePath);
-                    } else {
-                        fs.unlinkSync(filePath);
-                    }
-                }
-            };
-            cleanupDir(TEMP_DIR);
-            fs.rmdirSync(TEMP_DIR);
+            fs.rmSync(TEMP_DIR, { recursive: true, force: true });
             console.log("🧹 Temporary files cleaned up");
         } catch (error) {
             console.warn("⚠️ Failed to cleanup temporary files:", error.message);
@@ -57,6 +44,164 @@ function resetState() {
     }
 }
 
+// 解密器类
+class SecureDecryptor {
+    constructor(privateKeyPath) {
+        this.privateKeyPath = privateKeyPath;
+        this.loadedFiles = [];
+        this.memoryCache = new Map();
+    }
+
+    async loadBundle(bundlePath) {
+        console.log('🔓 Loading encrypted bundle...');
+        
+        // 如果bundlePath是相对路径，则相对于当前目录
+        const fullBundlePath = path.resolve(bundlePath);
+        
+        if (!fs.existsSync(fullBundlePath)) {
+            throw new Error(`Bundle file not found: ${fullBundlePath}`);
+        }
+
+        // 解密包
+        const bundle = await this.decryptPackage(fullBundlePath);
+        
+        // 缓存所有文件
+        for (const [filePath, fileData] of Object.entries(bundle)) {
+            this.memoryCache.set(filePath, fileData);
+            this.loadedFiles.push(filePath);
+        }
+        
+        console.log(`📦 Loaded ${this.loadedFiles.length} files from bundle`);
+    }
+
+    async loadKeysFromPath(privateKeyPath) {
+        // 从私钥路径推断其他密钥路径
+        const keyDir = path.dirname(privateKeyPath);
+        
+        // 尝试加载私钥和公钥
+        if (!fs.existsSync(privateKeyPath)) {
+            throw new Error(`Private key not found: ${privateKeyPath}`);
+        }
+        
+        // 解析私钥JSON文件
+        const recipientData = JSON.parse(fs.readFileSync(privateKeyPath, 'utf8'));
+        const recipientPrivateKey = recipientData.privateKey;
+        
+        // 推断对应的公钥文件路径
+        const basename = path.basename(privateKeyPath, path.extname(privateKeyPath));
+        const publicKeyPath = path.join(keyDir, basename.replace('recipient-keys', 'signer-keys') + '.json');
+        
+        if (!fs.existsSync(publicKeyPath)) {
+            throw new Error(`Signer public key not found: ${publicKeyPath}`);
+        }
+        
+        const signerData = JSON.parse(fs.readFileSync(publicKeyPath, 'utf8'));
+        
+        return {
+            recipientPrivateKey,
+            signerPublicKey: signerData.publicKey
+        };
+    }
+
+    async decryptPackage(packagePath) {
+        console.log('🔓 Starting decryption process...');
+        
+        // 读取加密包
+        const binaryData = fs.readFileSync(packagePath);
+        
+        // 解析二进制格式
+        let offset = 0;
+        
+        // 读取元数据
+        const metaLength = binaryData.readUInt32BE(offset);
+        offset += 4;
+        const metaBuf = binaryData.slice(offset, offset + metaLength);
+        offset += metaLength;
+        
+        // 读取签名
+        const signatureLength = binaryData.readUInt32BE(offset);
+        offset += 4;
+        const signature = binaryData.slice(offset, offset + signatureLength);
+        offset += signatureLength;
+        
+        // 读取IV
+        const ivLength = binaryData.readUInt32BE(offset);
+        offset += 4;
+        const iv = binaryData.slice(offset, offset + ivLength);
+        offset += ivLength;
+        
+        // 读取加密密钥
+        const encKeyLength = binaryData.readUInt32BE(offset);
+        offset += 4;
+        const encKey = binaryData.slice(offset, offset + encKeyLength);
+        offset += encKeyLength;
+        
+        // 读取认证标签
+        const authTagLength = binaryData.readUInt32BE(offset);
+        offset += 4;
+        const authTag = binaryData.slice(offset, offset + authTagLength);
+        offset += authTagLength;
+        
+        // 读取密文
+        const ciphertextLength = binaryData.readUInt32BE(offset);
+        offset += 4;
+        const ciphertext = binaryData.slice(offset, offset + ciphertextLength);
+
+        // 加载密钥
+        const keys = await this.loadKeysFromPath(this.privateKeyPath);
+
+        // 解密AES密钥
+        const aesKey = crypto.privateDecrypt({
+            key: keys.recipientPrivateKey,
+            padding: crypto.constants.RSA_PKCS1_OAEP_PADDING,
+        }, encKey);
+
+        // 验证签名
+        const toVerify = Buffer.concat([ciphertext, authTag, encKey, iv, metaBuf]);
+        const isValid = crypto.verify('sha256', toVerify, {
+            key: keys.signerPublicKey,
+            padding: crypto.constants.RSA_PKCS1_PSS_PADDING,
+        }, signature);
+        
+        if (!isValid) {
+            throw new Error('❌ Signature verification failed');
+        }
+
+        // 解密数据
+        const decipher = crypto.createDecipheriv('aes-256-gcm', aesKey, iv);
+        decipher.setAuthTag(authTag);
+        const decrypted = Buffer.concat([decipher.update(ciphertext), decipher.final()]);
+
+        // 解压缩
+        const decompressed = await this.decompressData(decrypted);
+        
+        console.log('✅ Decryption completed successfully');
+        return JSON.parse(decompressed.toString());
+    }
+
+    async decompressData(compressedData) {
+        return new Promise((resolve, reject) => {
+            const gunzip = createGunzip();
+            const chunks = [];
+            
+            gunzip.on('data', chunk => chunks.push(chunk));
+            gunzip.on('end', () => resolve(Buffer.concat(chunks)));
+            gunzip.on('error', reject);
+            
+            gunzip.write(compressedData);
+            gunzip.end();
+        });
+    }
+
+    getLoadedFiles() {
+        return this.loadedFiles;
+    }
+}
+
+// 创建解密加载器
+function createDecryptLoader(privateKeyPath) {
+    return new SecureDecryptor(privateKeyPath);
+}
 
 // 核心方法
 const initDecryption = async function(privateKeyPath) {
@@ -75,7 +220,7 @@ const initDecryption = async function(privateKeyPath) {
         
         try {
             // 1. 加载并解密bundle
-            await state.decryptLoader.loadBundle(path.resolve(__dirname, 'bundle.fec'));
+            await state.decryptLoader.loadBundle(path.resolve(__dirname, 'secure-package.vxz'));
             
             // 2. 创建临时目录
             if (!fs.existsSync(TEMP_DIR)) {
@@ -215,4 +360,4 @@ const FuseCore = new Proxy({}, {
     }
 });
 
-export default FuseCore;
+export default FuseCore;

package/keys/README.md

@@ -0,0 +1,47 @@
+# 密钥使用说明
+
+这个目录包含了使用加密版本 FuseCore 所需的密钥文件。
+
+## 文件说明
+
+- `build-version.json`: 构建版本信息
+- `recipient-keys-1.0.4.json`: 接收者密钥（包含解密所需的私钥）
+- `signer-keys-1.0.4.json`: 签名者公钥（用于验证签名）
+
+## 使用方法
+
+```javascript
+import FuseCore from 'fuse-core-express';
+import path from 'path';
+import { fileURLToPath } from 'url';
+
+const __dirname = path.dirname(fileURLToPath(import.meta.url));
+
+// 初始化解密，使用包内的密钥文件
+const privateKeyPath = path.join(__dirname, 'keys/recipient-keys-1.0.4.json');
+await FuseCore.initDecryption(privateKeyPath);
+
+// 初始化 FuseCore
+await FuseCore.init({
+    // 您的配置
+});
+```
+
+## 安全注意事项
+
+⚠️  **重要**: 在生产环境中：
+- 不要将接收者私钥暴露在客户端
+- 考虑使用环境变量或密钥管理服务
+- 定期轮换密钥
+- 监控密钥使用情况
+
+## 环境变量方式（推荐）
+
+您也可以使用环境变量来提供密钥：
+
+```bash
+export FUSECORE_RECIPIENT_PRIVATE_KEY="$(cat path/to/recipient-private-key.pem)"
+export FUSECORE_SIGNER_PUBLIC_KEY="$(cat path/to/signer-public-key.pem)"
+```
+
+当设置了这些环境变量时，`initDecryption()` 会自动使用它们，无需传递文件路径。

package/keys/build-version.json

@@ -0,0 +1,5 @@
+{
+  "major": 1,
+  "minor": 0,
+  "patch": 4
+}

package/keys/recipient-keys-1.0.4.json

@@ -0,0 +1,7 @@
+{
+  "publicKey": "-----BEGIN PUBLIC KEY-----\nMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArt2efLH0VTLkA1CGeIXG\nITFs11lLlgShffRDJZqX+Igp1OQAt4+ayoAZNEef5ycHMDZprWfRRNKk/VJK2vCk\nK9yrXXAbuOxxWhBWxH4uzwhamtc8WehKTdPOE9Z9iMzhS+756nmn4Fg0HXTN/7QP\nkGlInOUqxkyCgssXXzFSS5wbc/znKYBAuOQdNMc+zfgyv/2TGZFvr1mt9z2uE20a\nGf4w1v8Ama3hJ1CYkkRMOtyHRL/BV82FPtOxTG5nTTh1LnQRkR1zBpxqRANcW1ge\nGHhE/ES58cDFKEvVcdv9HMufZ0jYcWWNNyaXD1C1FGX9+Y0/RcTY1j0i3cAEum+/\nuQIDAQAB\n-----END PUBLIC KEY-----\n",
+  "privateKey": "-----BEGIN PRIVATE KEY-----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\n8SAT4lnKflAiwBNASXPBfCw=\n-----END PRIVATE KEY-----\n",
+  "owner": "recipient",
+  "version": "1.0.4",
+  "timestamp": "2025-08-02T14:36:33.489Z"
+}

package/keys/signer-keys-1.0.4.json

@@ -0,0 +1,5 @@
+{
+  "publicKey": "-----BEGIN PUBLIC KEY-----\nMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoWtm4LNJeFp5MufYJ7YF\nWZ2kbZHc/RUqfQwhBcAu/Wlkosg6FOQM9L1us3hKCASICO4Rgsab+InHmE7XDhFF\ndcSpLaDKWsEC8RHyH5cR9YiCgqaxRL0BI2eNXrX4EpP8NQ2VxDQFWFCccrJIwEpV\ncT9APCz/UDsVZ2qSZYf1llPvYSfiENUMtdOW7LHfk3KqFmIwZH11Qmatef2VgkQ4\nhTP6yr49GV2azGof/QI2Iu7Aow4XF9W3SNZbqGGkzhv/gVdtVnT729dHxWL7aT17\nD7oNw4F9mBDW8PzqDqVv33duWATY32Rvdre+N3vEu6UmjQ20QFjlurfMZXZd6gQt\nMwIDAQAB\n-----END PUBLIC KEY-----\n",
+  "owner": "signer",
+  "timestamp": "2025-08-02T14:36:33.231Z"
+}

package/package.json

@@ -1,34 +1,12 @@
 {
   "name": "fuse-core-express",
-  "version": "1.0.2",
-  "description": "FuseCore Web Component",
+  "version": "1.0.4",
+  "description": "FuseCore Express Encrypted Package",
+  "type": "module",
+  "main": "index.js",
   "scripts": {
-    "postinstall": "echo \"⚠️  This is an encrypted version of FuseCore. Private key is included for MIT compliance.\""
-  },
-  "main": "index.mjs",
-  "exports": {
-    ".": {
-      "node": {
-        "import": "./index.mjs",
-        "require": "./index.mjs"
-      },
-      "default": "./index.mjs"
-    },
-    "./package.json": "./package.json"
-  },
-  "module": "./index.mjs",
-  "repository": {
-    "type": "git",
-    "url": "git+https://github.com/ds3783/FuseCore.git"
-  },
-  "author": "Ds.3783",
-  "license": "MIT",
-  "bugs": {
-    "url": "https://github.com/ds3783/FuseCore/issues"
-  },
-  "homepage": "https://github.com/ds3783/FuseCore#readme",
-  "publishConfig": {
-    "registry": "https://registry.npmjs.org"
+    "start": "node index.js",
+    "test": "node index.js"
   },
   "dependencies": {
     "better-https-proxy-agent": "^1.0.8",
@@ -40,37 +18,43 @@
     "redis": "^4.6.0",
     "tracer": "^1.3.0"
   },
-  "husky": {
-    "hooks": {
-      "pre-commit": "npm run build",
-      "pre-push": "npm test"
-    }
+  "devDependencies": {
+    "@babel/cli": "^7.28.0",
+    "@babel/core": "^7.20.12",
+    "@babel/plugin-transform-async-to-generator": "^7.20.7",
+    "@babel/preset-env": "^7.20.2",
+    "husky": "^4.3.0",
+    "javascript-obfuscator": "^4.1.1",
+    "mocha": "^11.7.1"
+  },
+  "peerDependencies": {},
+  "optionalDependencies": {},
+  "engines": {},
+  "os": [],
+  "cpu": [],
+  "keywords": [],
+  "author": "Ds.3783",
+  "license": "MIT",
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/ds3783/FuseCore.git"
   },
-  "type": "module",
+  "bugs": {
+    "url": "https://github.com/ds3783/FuseCore/issues"
+  },
+  "homepage": "https://github.com/ds3783/FuseCore#readme",
   "files": [
-    "index.mjs",
-    "decrypt-loader.mjs",
-    "private-1.0.2.pem",
-    "cjs/",
-    "esm/",
-    "README.md",
-    "CHANGELOG.md",
-    "LICENSE"
+    "index.js",
+    "secure-package.vxz",
+    "decryptor.js",
+    "keys/",
+    "README.md"
   ],
-  "keywords": [
-    "encrypted",
-    "obfuscated",
-    "protected",
-    "secure"
-  ],
-  "engines": {
-    "node": ">=14.0.0"
-  },
-  "encrypted": {
-    "version": "1.0.2",
-    "algorithm": "AES-256-CBC + RSA-2048",
-    "obfuscated": true,
-    "integrity": "RSA-SHA256",
-    "keyRequired": "private-1.0.2.pem"
+  "security": {
+    "note": "This package contains encrypted content. Use the provided decryptor with appropriate keys to access the content.",
+    "keyRequirements": {
+      "recipientPrivateKey": "Required for decryption",
+      "signerPublicKey": "Required for signature verification"
+    }
   }
 }

package/CHANGELOG.md

@@ -1,128 +0,0 @@
-# FuseCore Changelog
-
-## [Unreleased]
-
-### Added
-- **Redis TLS Support**: Added `enableTls` parameter to Redis socket configuration
-  - New `enableTls` option in Redis configuration for secure connections
-  - Default value is `false` for backward compatibility
-  - Supports both standard Redis connections and TLS-enabled connections
-  - Updated documentation and examples to include TLS configuration
-- **Redis Configuration Cleanup**: Removed unsupported parameters from Redis configuration
-  - Removed `connectTimeout` and `commandTimeout` parameters (not in official docs)
-  - Kept only officially supported socket parameters: `tls`, `reconnectStrategy`
-  - Configuration now strictly follows Redis official documentation
-
-### Changed
-- **Build Process**: Separated version bumping from crypto build process
-  - Version increment and key generation moved to `npm run version:bump`
-  - Crypto build now uses existing keys instead of generating new ones
-  - New keys and version changes are automatically committed to git
-  - Added git tag creation for version tracking
-
-### Added
-- **Version & Keys Management**: New `build/version-keys.mjs` script for version and key management
-  - Automatic version increment with SemVer compliance
-  - Git integration for committing keys and version changes
-  - Git tag creation for release tracking
-  - Clean working directory validation
-- **MIT License Compliance**: Private keys now included in published packages
-  - Private key automatically copied to `dist-encrypted` directory
-  - Package `files` field updated to include private key
-  - README updated with MIT compliance notices
-  - Users can now use the package without external key management
-- **MIT License Documentation**: Added complete MIT license documentation
-  - Created `LICENSE` file with full MIT license text
-  - Added MIT license badge to README header
-  - Added complete MIT license text to README
-  - Updated package `files` field to include LICENSE file
-- **Package Name Update**: Changed npm package name from `fuse-core` to `fusecore` to `fuse-core-express`
-  - Updated package.json name field
-  - Updated all README examples to use new package name
-  - Updated encrypted version documentation
-- **Encrypted Version Path Fix**: Fixed module path resolution in encrypted version
-  - Fixed decrypt loader to correctly resolve `.fec` file paths
-  - Updated path resolution to include `cjs/` directory prefix
-  - Resolved ENOENT errors when loading encrypted modules
-- **ESM/CJS Compatibility**: Enhanced encrypted version to support both module systems
-  - Added intelligent path resolution for ESM and CJS directories
-  - Prioritizes ESM modules when available (ESM-first approach)
-  - Falls back to CJS modules when ESM not available
-  - Maintains backward compatibility with existing installations
-- **ESM Runtime Compatibility**: Fixed `require is not defined` error in ESM environments
-  - Implemented dual-mode module loading system for CommonJS and ESM
-  - Added async/await support for ESM module execution
-  - Updated decrypt loader to handle both runtime environments seamlessly
-  - Fixed module execution context for encrypted code in ESM mode
-- **Global Singleton Pattern**: Fixed ESM module import inconsistency issues
-  - Implemented global singleton using Symbol.for() to ensure single instance across all imports
-  - Fixed issue where multiple imports of FuseCore created different instances
-  - Ensured consistent state across app.mjs and route1.mjs imports
-  - Added proper state management for initialization status across module boundaries
-- **Proxy Architecture**: Redesigned encrypted version to proxy to original API
-  - Generated index.mjs now only handles decryption logic
-  - After decryption, all API calls are proxied to the original source code
-  - Maintains complete compatibility with original FuseCore API
-  - Simplified architecture: decrypt once, then use original functionality
-  - Eliminates need to reimplement API logic in encrypted version
-
-## [1.1.0] - 2025-07-31
-
-### Added
-- **Redis Cache Support**: FuseCore now supports Redis as a cache backend
-  - Full Redis integration with connection management
-  - Support for Redis-specific operations: `exists`, `expire`, `ttl`, `keys`, `flushAll`
-  - Configurable connection options including timeout and client settings
-  - Automatic reconnection and error handling
-
-### Fixed
-- **Redis Cache Type Preservation**: Fixed critical bug where JSON strings were incorrectly parsed as objects
-  - JSON strings now maintain their string type when stored and retrieved
-  - Objects are properly serialized/deserialized 
-  - Backward compatibility with existing cached data
-
-### Removed
-- **Nestia-specific UA Properties**: Removed Nestia-related properties from getUAInfo function
-  - Removed: `isNestiaServer`, `isNestiaClient`, `isNestiaAgentClient`, `nestiaClientId`
-  - Removed: `isNestiaBusClient`, `isNestiaAppClient`, `isNestiaLotteryClient`, `isNestiaMalaysiaLotteryClient`
-  - Cleaned up function implementation and documentation
-  - Updated README documentation to reflect changes
-  - Fixed code quality warnings (assignment in conditions, unused variables, logic errors)
-
-### Changed
-- **Cache API**: All cache operations are now asynchronous (`async/await`)
-  - Memory cache methods updated to return Promises for consistency
-  - Tests updated to use async/await pattern
-
-### Configuration
-New Redis cache configuration options:
-```javascript
-{
-    cache: {
-        impl: 'redis',  // 'memory' or 'redis'
-        redis: {
-            url: 'redis://localhost:6379',
-            enableTls: false,             // Enable TLS/SSL connection
-            clientOptions: {}
-        }
-    }
-};
-```
-
-### Migration Guide
-- Update cache usage to use `await` for all cache operations
-- No breaking changes for existing memory cache usage
-- Redis cache requires `redis` npm package (automatically installed)
-
-## [1.0.0] - 2025-07-31
-
-### Added
-- Initial release
-- Migrated from nestia-web to FuseCore
-- Core modules: Ajax, Cache (memory), Logger, Manifest, Monitor
-- Complete test suite
-- Documentation and examples
-
-### Removed
-- Config module (deprecated)
-- Internal network dependencies replaced with public APIs

package/LICENSE

@@ -1,21 +0,0 @@
-MIT License
-
-Copyright (c) 2024 Ds.3783
-
-Permission is hereby granted, free of charge, to any person obtaining a copy
-of this software and associated documentation files (the "Software"), to deal
-in the Software without restriction, including without limitation the rights
-to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
-copies of the Software, and to permit persons to whom the Software is
-furnished to do so, subject to the following conditions:
-
-The above copyright notice and this permission notice shall be included in all
-copies or substantial portions of the Software.
-
-THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
-IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
-FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
-AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
-LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
-OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
-SOFTWARE.