kush-e2e 1.0.0

package/README.md

@@ -0,0 +1,43 @@
+# KushE2E
+
+End-to-end encryption library for secure peer-to-peer communication using ECDH key exchange and AES-256 encryption.
+
+## Installation
+
+```bash
+npm install kush-e2e
+```
+
+## Usage
+
+```typescript
+import { KushE2E } from 'kush-e2e';
+
+// Create identities
+const identity1 = await KushE2E.createIdentity();
+const identity2 = await KushE2E.createIdentity();
+
+// Derive shared session key
+const sessionKey = await KushE2E.deriveSessionKey(
+  identity1.privateKey,
+  identity2.publicKey
+);
+
+// Encrypt message
+const encrypted = await KushE2E.encrypt('Hello World', sessionKey);
+
+// Decrypt message
+const decrypted = await KushE2E.decrypt(encrypted, sessionKey);
+console.log(decrypted); // "Hello World"
+```
+
+## Features
+
+- ECDH-ES+A256KW key exchange with P-256 curve
+- AES-256 GCM encryption/decryption
+- Cross-platform crypto support (Node.js and browsers)
+- Full TypeScript support
+
+## License
+
+ISC

package/dist/index.d.mts

@@ -0,0 +1,13 @@
+interface Identity {
+    publicKey: string;
+    privateKey: string;
+}
+declare class KushE2E {
+    static createIdentity(): Promise<Identity>;
+    static deriveSessionKey(myPrivateKeyPem: string, theirPublicKeyPem: string): Promise<string>;
+    static encrypt(text: string, sessionKey: string): Promise<string>;
+    static decrypt(cipherText: string, sessionKey: string): Promise<string>;
+    private static _stringToKey;
+}
+
+export { type Identity, KushE2E };

package/dist/index.d.ts

@@ -0,0 +1,13 @@
+interface Identity {
+    publicKey: string;
+    privateKey: string;
+}
+declare class KushE2E {
+    static createIdentity(): Promise<Identity>;
+    static deriveSessionKey(myPrivateKeyPem: string, theirPublicKeyPem: string): Promise<string>;
+    static encrypt(text: string, sessionKey: string): Promise<string>;
+    static decrypt(cipherText: string, sessionKey: string): Promise<string>;
+    private static _stringToKey;
+}
+
+export { type Identity, KushE2E };

package/dist/index.js

@@ -0,0 +1,82 @@
+"use strict";
+var __create = Object.create;
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __getProtoOf = Object.getPrototypeOf;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toESM = (mod, isNodeMode, target) => (target = mod != null ? __create(__getProtoOf(mod)) : {}, __copyProps(
+  // If the importer is in node compatibility mode or this is not an ESM
+  // file that has been converted to a CommonJS file using a Babel-
+  // compatible transform (i.e. "__esModule" has not been set), then set
+  // "default" to the CommonJS "module.exports" for node compatibility.
+  isNodeMode || !mod || !mod.__esModule ? __defProp(target, "default", { value: mod, enumerable: true }) : target,
+  mod
+));
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+
+// src/index.ts
+var index_exports = {};
+__export(index_exports, {
+  KushE2E: () => KushE2E
+});
+module.exports = __toCommonJS(index_exports);
+var jose = __toESM(require("jose"));
+var KushE2E = class {
+  static async createIdentity() {
+    const { publicKey, privateKey } = await jose.generateKeyPair("ECDH-ES+A256KW", {
+      crv: "P-256",
+      extractable: true
+    });
+    return {
+      publicKey: await jose.exportSPKI(publicKey),
+      privateKey: await jose.exportPKCS8(privateKey)
+    };
+  }
+  static async deriveSessionKey(myPrivateKeyPem, theirPublicKeyPem) {
+    const myPriv = await jose.importPKCS8(myPrivateKeyPem, "ECDH-ES+A256KW");
+    const theirPub = await jose.importSPKI(theirPublicKeyPem, "ECDH-ES+A256KW");
+    const crypto = globalThis.crypto;
+    if (!crypto || !crypto.subtle) {
+      throw new Error("Web Crypto API is not available in this environment");
+    }
+    const sharedBits = await crypto.subtle.deriveBits(
+      { name: "ECDH", public: theirPub },
+      myPriv,
+      256
+    );
+    return jose.base64url.encode(new Uint8Array(sharedBits));
+  }
+  static async encrypt(text, sessionKey) {
+    const key = await this._stringToKey(sessionKey);
+    const enc = new TextEncoder();
+    return await new jose.CompactEncrypt(enc.encode(text)).setProtectedHeader({ alg: "dir", enc: "A256GCM" }).encrypt(key);
+  }
+  static async decrypt(cipherText, sessionKey) {
+    const key = await this._stringToKey(sessionKey);
+    const { plaintext } = await jose.compactDecrypt(cipherText, key);
+    return new TextDecoder().decode(plaintext);
+  }
+  static async _stringToKey(str) {
+    return jose.importJWK(
+      { kty: "oct", k: str, alg: "A256GCM", ext: true },
+      "A256GCM"
+    );
+  }
+};
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  KushE2E
+});

package/dist/index.mjs

@@ -0,0 +1,47 @@
+// src/index.ts
+import * as jose from "jose";
+var KushE2E = class {
+  static async createIdentity() {
+    const { publicKey, privateKey } = await jose.generateKeyPair("ECDH-ES+A256KW", {
+      crv: "P-256",
+      extractable: true
+    });
+    return {
+      publicKey: await jose.exportSPKI(publicKey),
+      privateKey: await jose.exportPKCS8(privateKey)
+    };
+  }
+  static async deriveSessionKey(myPrivateKeyPem, theirPublicKeyPem) {
+    const myPriv = await jose.importPKCS8(myPrivateKeyPem, "ECDH-ES+A256KW");
+    const theirPub = await jose.importSPKI(theirPublicKeyPem, "ECDH-ES+A256KW");
+    const crypto = globalThis.crypto;
+    if (!crypto || !crypto.subtle) {
+      throw new Error("Web Crypto API is not available in this environment");
+    }
+    const sharedBits = await crypto.subtle.deriveBits(
+      { name: "ECDH", public: theirPub },
+      myPriv,
+      256
+    );
+    return jose.base64url.encode(new Uint8Array(sharedBits));
+  }
+  static async encrypt(text, sessionKey) {
+    const key = await this._stringToKey(sessionKey);
+    const enc = new TextEncoder();
+    return await new jose.CompactEncrypt(enc.encode(text)).setProtectedHeader({ alg: "dir", enc: "A256GCM" }).encrypt(key);
+  }
+  static async decrypt(cipherText, sessionKey) {
+    const key = await this._stringToKey(sessionKey);
+    const { plaintext } = await jose.compactDecrypt(cipherText, key);
+    return new TextDecoder().decode(plaintext);
+  }
+  static async _stringToKey(str) {
+    return jose.importJWK(
+      { kty: "oct", k: str, alg: "A256GCM", ext: true },
+      "A256GCM"
+    );
+  }
+};
+export {
+  KushE2E
+};

package/package.json

@@ -0,0 +1,40 @@
+{
+  "name": "kush-e2e",
+  "version": "1.0.0",
+  "description": "End-to-end encryption library for secure peer-to-peer communication",
+  "main": "./dist/index.js",
+  "module": "./dist/index.mjs",
+  "types": "./dist/index.d.ts",
+  "scripts": {
+    "build": "tsup src/index.ts --format cjs,esm --dts",
+    "dev": "tsup src/index.ts --format cjs,esm --dts --watch"
+  },
+  "keywords": [
+    "e2e",
+    "encryption",
+    "ecdh",
+    "aes",
+    "crypto",
+    "secure",
+    "messaging"
+  ],
+  "author": "",
+  "license": "ISC",
+  "type": "commonjs",
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/kushkumarkashyap7280/kush-e2e"
+  },
+  "bugs": {
+    "url": "https://github.com/kushkumarkashyap7280/kush-e2e/issues"
+  },
+  "homepage": "https://github.com/kushkumarkashyap7280/kush-e2e#readme",
+  "dependencies": {
+    "jose": "^6.1.3",
+    "tsup": "^8.5.1",
+    "typescript": "^5.9.3"
+  },
+  "devDependencies": {
+    "@types/node": "^25.2.0"
+  }
+}