mdenc 0.1.0

package/dist/index.d.cts

@@ -0,0 +1,42 @@
+interface ScryptParams {
+    N: number;
+    r: number;
+    p: number;
+}
+declare const DEFAULT_SCRYPT_PARAMS: ScryptParams;
+interface MdencHeader {
+    version: 'v1';
+    salt: Uint8Array;
+    fileId: Uint8Array;
+    scrypt: ScryptParams;
+}
+interface MdencChunk {
+    payload: Uint8Array;
+}
+interface MdencFile {
+    header: MdencHeader;
+    headerLine: string;
+    headerHmac: Uint8Array;
+    chunks: MdencChunk[];
+    sealHmac: Uint8Array;
+}
+declare enum ChunkingStrategy {
+    Paragraph = "paragraph",
+    FixedSize = "fixed-size"
+}
+interface EncryptOptions {
+    chunking?: ChunkingStrategy;
+    maxChunkSize?: number;
+    fixedChunkSize?: number;
+    scrypt?: ScryptParams;
+    previousFile?: string;
+}
+interface DecryptOptions {
+}
+
+declare function encrypt(plaintext: string, password: string, options?: EncryptOptions): Promise<string>;
+declare function decrypt(fileContent: string, password: string): Promise<string>;
+
+declare function verifySeal(fileContent: string, password: string): Promise<boolean>;
+
+export { ChunkingStrategy, DEFAULT_SCRYPT_PARAMS, type DecryptOptions, type EncryptOptions, type MdencChunk, type MdencFile, type MdencHeader, type ScryptParams, decrypt, encrypt, verifySeal };

package/dist/index.d.ts

@@ -0,0 +1,42 @@
+interface ScryptParams {
+    N: number;
+    r: number;
+    p: number;
+}
+declare const DEFAULT_SCRYPT_PARAMS: ScryptParams;
+interface MdencHeader {
+    version: 'v1';
+    salt: Uint8Array;
+    fileId: Uint8Array;
+    scrypt: ScryptParams;
+}
+interface MdencChunk {
+    payload: Uint8Array;
+}
+interface MdencFile {
+    header: MdencHeader;
+    headerLine: string;
+    headerHmac: Uint8Array;
+    chunks: MdencChunk[];
+    sealHmac: Uint8Array;
+}
+declare enum ChunkingStrategy {
+    Paragraph = "paragraph",
+    FixedSize = "fixed-size"
+}
+interface EncryptOptions {
+    chunking?: ChunkingStrategy;
+    maxChunkSize?: number;
+    fixedChunkSize?: number;
+    scrypt?: ScryptParams;
+    previousFile?: string;
+}
+interface DecryptOptions {
+}
+
+declare function encrypt(plaintext: string, password: string, options?: EncryptOptions): Promise<string>;
+declare function decrypt(fileContent: string, password: string): Promise<string>;
+
+declare function verifySeal(fileContent: string, password: string): Promise<boolean>;
+
+export { ChunkingStrategy, DEFAULT_SCRYPT_PARAMS, type DecryptOptions, type EncryptOptions, type MdencChunk, type MdencFile, type MdencHeader, type ScryptParams, decrypt, encrypt, verifySeal };

package/dist/index.js

@@ -0,0 +1,424 @@
+// src/types.ts
+var DEFAULT_SCRYPT_PARAMS = {
+  N: 16384,
+  r: 8,
+  p: 1
+};
+var SCRYPT_BOUNDS = {
+  N: { min: 1024, max: 1048576 },
+  // 2^10 – 2^20
+  r: { min: 1, max: 64 },
+  p: { min: 1, max: 16 }
+};
+var ChunkingStrategy = /* @__PURE__ */ ((ChunkingStrategy2) => {
+  ChunkingStrategy2["Paragraph"] = "paragraph";
+  ChunkingStrategy2["FixedSize"] = "fixed-size";
+  return ChunkingStrategy2;
+})(ChunkingStrategy || {});
+
+// src/encrypt.ts
+import { hmac as hmac3 } from "@noble/hashes/hmac";
+import { sha256 as sha2564 } from "@noble/hashes/sha256";
+
+// src/chunking.ts
+var DEFAULT_MAX_CHUNK_SIZE = 65536;
+function chunkByParagraph(text, maxSize = DEFAULT_MAX_CHUNK_SIZE) {
+  const normalized = text.replace(/\r\n/g, "\n");
+  if (normalized.length === 0) {
+    return [""];
+  }
+  const chunks = [];
+  const boundary = /\n{2,}/g;
+  let lastEnd = 0;
+  let match;
+  while ((match = boundary.exec(normalized)) !== null) {
+    const chunkEnd = match.index + match[0].length;
+    chunks.push(normalized.slice(lastEnd, chunkEnd));
+    lastEnd = chunkEnd;
+  }
+  if (lastEnd < normalized.length) {
+    chunks.push(normalized.slice(lastEnd));
+  } else if (chunks.length === 0) {
+    chunks.push(normalized);
+  }
+  const result = [];
+  for (const chunk of chunks) {
+    if (byteLength(chunk) <= maxSize) {
+      result.push(chunk);
+    } else {
+      result.push(...splitAtByteLimit(chunk, maxSize));
+    }
+  }
+  return result;
+}
+function chunkByFixedSize(text, size) {
+  const normalized = text.replace(/\r\n/g, "\n");
+  if (normalized.length === 0) {
+    return [""];
+  }
+  const bytes = new TextEncoder().encode(normalized);
+  if (bytes.length <= size) {
+    return [normalized];
+  }
+  const chunks = [];
+  const decoder = new TextDecoder();
+  let offset = 0;
+  while (offset < bytes.length) {
+    const end = Math.min(offset + size, bytes.length);
+    let adjusted = end;
+    if (adjusted < bytes.length) {
+      while (adjusted > offset && (bytes[adjusted] & 192) === 128) {
+        adjusted--;
+      }
+    }
+    chunks.push(decoder.decode(bytes.slice(offset, adjusted)));
+    offset = adjusted;
+  }
+  return chunks;
+}
+function byteLength(s) {
+  return new TextEncoder().encode(s).length;
+}
+function splitAtByteLimit(text, maxSize) {
+  const bytes = new TextEncoder().encode(text);
+  const decoder = new TextDecoder();
+  const parts = [];
+  let offset = 0;
+  while (offset < bytes.length) {
+    let end = Math.min(offset + maxSize, bytes.length);
+    if (end < bytes.length) {
+      while (end > offset && (bytes[end] & 192) === 128) {
+        end--;
+      }
+    }
+    parts.push(decoder.decode(bytes.slice(offset, end)));
+    offset = end;
+  }
+  return parts;
+}
+
+// src/kdf.ts
+import { hkdf } from "@noble/hashes/hkdf";
+import { sha256 } from "@noble/hashes/sha256";
+import { scrypt } from "@noble/hashes/scrypt";
+
+// src/crypto-utils.ts
+function constantTimeEqual(a, b) {
+  if (a.length !== b.length) return false;
+  let diff = 0;
+  for (let i = 0; i < a.length; i++) {
+    diff |= a[i] ^ b[i];
+  }
+  return diff === 0;
+}
+function zeroize(...arrays) {
+  for (const arr of arrays) {
+    arr.fill(0);
+  }
+}
+
+// src/kdf.ts
+var ENC_INFO = new TextEncoder().encode("mdenc-v1-enc");
+var HDR_INFO = new TextEncoder().encode("mdenc-v1-hdr");
+var NONCE_INFO = new TextEncoder().encode("mdenc-v1-nonce");
+function normalizePassword(password) {
+  const normalized = password.normalize("NFKC");
+  return new TextEncoder().encode(normalized);
+}
+function deriveMasterKey(password, salt, params = DEFAULT_SCRYPT_PARAMS) {
+  const passwordBytes = normalizePassword(password);
+  try {
+    return scrypt(passwordBytes, salt, {
+      N: params.N,
+      r: params.r,
+      p: params.p,
+      dkLen: 32
+    });
+  } finally {
+    zeroize(passwordBytes);
+  }
+}
+function deriveKeys(masterKey) {
+  const encKey = hkdf(sha256, masterKey, void 0, ENC_INFO, 32);
+  const headerKey = hkdf(sha256, masterKey, void 0, HDR_INFO, 32);
+  const nonceKey = hkdf(sha256, masterKey, void 0, NONCE_INFO, 32);
+  return { encKey, headerKey, nonceKey };
+}
+
+// src/aead.ts
+import { xchacha20poly1305 } from "@noble/ciphers/chacha";
+import { hmac } from "@noble/hashes/hmac";
+import { sha256 as sha2562 } from "@noble/hashes/sha256";
+var NONCE_LENGTH = 24;
+function buildAAD(fileId) {
+  const fileIdHex = bytesToHex(fileId);
+  const aadString = `mdenc:v1
+${fileIdHex}`;
+  return new TextEncoder().encode(aadString);
+}
+function deriveNonce(nonceKey, plaintext) {
+  const full = hmac(sha2562, nonceKey, plaintext);
+  return full.slice(0, NONCE_LENGTH);
+}
+function encryptChunk(encKey, nonceKey, plaintext, fileId) {
+  const nonce = deriveNonce(nonceKey, plaintext);
+  const aad = buildAAD(fileId);
+  const cipher = xchacha20poly1305(encKey, nonce, aad);
+  const ciphertext = cipher.encrypt(plaintext);
+  const result = new Uint8Array(NONCE_LENGTH + ciphertext.length);
+  result.set(nonce, 0);
+  result.set(ciphertext, NONCE_LENGTH);
+  return result;
+}
+function decryptChunk(encKey, payload, fileId) {
+  if (payload.length < NONCE_LENGTH + 16) {
+    throw new Error("Chunk payload too short");
+  }
+  const nonce = payload.slice(0, NONCE_LENGTH);
+  const ciphertext = payload.slice(NONCE_LENGTH);
+  const aad = buildAAD(fileId);
+  const cipher = xchacha20poly1305(encKey, nonce, aad);
+  try {
+    return cipher.decrypt(ciphertext);
+  } catch {
+    throw new Error("Chunk authentication failed");
+  }
+}
+function bytesToHex(bytes) {
+  let hex = "";
+  for (let i = 0; i < bytes.length; i++) {
+    hex += bytes[i].toString(16).padStart(2, "0");
+  }
+  return hex;
+}
+
+// src/header.ts
+import { hmac as hmac2 } from "@noble/hashes/hmac";
+import { sha256 as sha2563 } from "@noble/hashes/sha256";
+import { randomBytes } from "@noble/ciphers/webcrypto";
+function generateSalt() {
+  return randomBytes(16);
+}
+function generateFileId() {
+  return randomBytes(16);
+}
+function serializeHeader(header) {
+  const saltB64 = toBase64(header.salt);
+  const fileIdB64 = toBase64(header.fileId);
+  const { N, r, p } = header.scrypt;
+  return `mdenc:v1 salt_b64=${saltB64} file_id_b64=${fileIdB64} scrypt=N=${N},r=${r},p=${p}`;
+}
+function parseHeader(line) {
+  if (!line.startsWith("mdenc:v1 ")) {
+    throw new Error("Invalid header: missing mdenc:v1 prefix");
+  }
+  const saltMatch = line.match(/salt_b64=([A-Za-z0-9+/=]+)/);
+  if (!saltMatch) throw new Error("Invalid header: missing salt_b64");
+  const salt = fromBase64(saltMatch[1]);
+  if (salt.length !== 16) throw new Error("Invalid header: salt must be 16 bytes");
+  const fileIdMatch = line.match(/file_id_b64=([A-Za-z0-9+/=]+)/);
+  if (!fileIdMatch) throw new Error("Invalid header: missing file_id_b64");
+  const fileId = fromBase64(fileIdMatch[1]);
+  if (fileId.length !== 16) throw new Error("Invalid header: file_id must be 16 bytes");
+  const scryptMatch = line.match(/scrypt=N=(\d+),r=(\d+),p=(\d+)/);
+  if (!scryptMatch) throw new Error("Invalid header: missing scrypt parameters");
+  const scryptParams = {
+    N: parseInt(scryptMatch[1], 10),
+    r: parseInt(scryptMatch[2], 10),
+    p: parseInt(scryptMatch[3], 10)
+  };
+  validateScryptParams(scryptParams);
+  return { version: "v1", salt, fileId, scrypt: scryptParams };
+}
+function validateScryptParams(params) {
+  const { N, r, p } = SCRYPT_BOUNDS;
+  if (params.N < N.min || params.N > N.max) {
+    throw new Error(`Invalid scrypt N: ${params.N} (must be ${N.min}\u2013${N.max})`);
+  }
+  if (params.r < r.min || params.r > r.max) {
+    throw new Error(`Invalid scrypt r: ${params.r} (must be ${r.min}\u2013${r.max})`);
+  }
+  if (params.p < p.min || params.p > p.max) {
+    throw new Error(`Invalid scrypt p: ${params.p} (must be ${p.min}\u2013${p.max})`);
+  }
+}
+function authenticateHeader(headerKey, headerLine) {
+  const headerBytes = new TextEncoder().encode(headerLine);
+  return hmac2(sha2563, headerKey, headerBytes);
+}
+function verifyHeader(headerKey, headerLine, hmacBytes) {
+  const computed = authenticateHeader(headerKey, headerLine);
+  return constantTimeEqual(computed, hmacBytes);
+}
+function toBase64(bytes) {
+  return Buffer.from(bytes).toString("base64");
+}
+function fromBase64(b64) {
+  return new Uint8Array(Buffer.from(b64, "base64"));
+}
+
+// src/encrypt.ts
+async function encrypt(plaintext, password, options) {
+  const chunking = options?.chunking ?? "paragraph" /* Paragraph */;
+  const maxChunkSize = options?.maxChunkSize ?? 65536;
+  const scryptParams = options?.scrypt ?? DEFAULT_SCRYPT_PARAMS;
+  let chunks;
+  if (chunking === "fixed-size" /* FixedSize */) {
+    const fixedSize = options?.fixedChunkSize ?? 4096;
+    chunks = chunkByFixedSize(plaintext, fixedSize);
+  } else {
+    chunks = chunkByParagraph(plaintext, maxChunkSize);
+  }
+  let salt;
+  let fileId;
+  let masterKey;
+  const prev = options?.previousFile ? parsePreviousFileHeader(options.previousFile, password) : void 0;
+  if (prev) {
+    salt = prev.salt;
+    fileId = prev.fileId;
+    masterKey = prev.masterKey;
+  } else {
+    salt = generateSalt();
+    fileId = generateFileId();
+    masterKey = deriveMasterKey(password, salt, scryptParams);
+  }
+  const { encKey, headerKey, nonceKey } = deriveKeys(masterKey);
+  try {
+    const header = { version: "v1", salt, fileId, scrypt: scryptParams };
+    const headerLine = serializeHeader(header);
+    const headerHmac = authenticateHeader(headerKey, headerLine);
+    const headerAuthLine = `hdrauth_b64=${toBase64(headerHmac)}`;
+    const chunkLines = [];
+    for (const chunkText of chunks) {
+      const chunkBytes = new TextEncoder().encode(chunkText);
+      const payload = encryptChunk(encKey, nonceKey, chunkBytes, fileId);
+      chunkLines.push(toBase64(payload));
+    }
+    const sealInput = headerLine + "\n" + headerAuthLine + "\n" + chunkLines.join("\n");
+    const sealData = new TextEncoder().encode(sealInput);
+    const sealHmac = hmac3(sha2564, headerKey, sealData);
+    const sealLine = `seal_b64=${toBase64(sealHmac)}`;
+    return [headerLine, headerAuthLine, ...chunkLines, sealLine, ""].join("\n");
+  } finally {
+    zeroize(masterKey, encKey, headerKey, nonceKey);
+  }
+}
+async function decrypt(fileContent, password) {
+  const lines = fileContent.split("\n");
+  if (lines.length > 0 && lines[lines.length - 1] === "") {
+    lines.pop();
+  }
+  if (lines.length < 3) {
+    throw new Error("Invalid mdenc file: too few lines");
+  }
+  const headerLine = lines[0];
+  const header = parseHeader(headerLine);
+  const authLine = lines[1];
+  const authMatch = authLine.match(/^hdrauth_b64=([A-Za-z0-9+/=]+)$/);
+  if (!authMatch) {
+    throw new Error("Invalid mdenc file: missing hdrauth_b64 line");
+  }
+  const headerHmac = fromBase64(authMatch[1]);
+  const masterKey = deriveMasterKey(password, header.salt, header.scrypt);
+  const { encKey, headerKey, nonceKey } = deriveKeys(masterKey);
+  try {
+    if (!verifyHeader(headerKey, headerLine, headerHmac)) {
+      throw new Error("Header authentication failed (wrong password or tampered header)");
+    }
+    const remaining = lines.slice(2);
+    const sealIndex = remaining.findIndex((l) => l.startsWith("seal_b64="));
+    if (sealIndex < 0) {
+      throw new Error("Invalid mdenc file: missing seal");
+    }
+    const chunkLines = remaining.slice(0, sealIndex);
+    if (chunkLines.length === 0) {
+      throw new Error("Invalid mdenc file: no chunk lines");
+    }
+    const sealMatch = remaining[sealIndex].match(/^seal_b64=([A-Za-z0-9+/=]+)$/);
+    if (!sealMatch) throw new Error("Invalid mdenc file: malformed seal line");
+    const storedSealHmac = fromBase64(sealMatch[1]);
+    const sealInput = headerLine + "\n" + authLine + "\n" + chunkLines.join("\n");
+    const sealData = new TextEncoder().encode(sealInput);
+    const computedSealHmac = hmac3(sha2564, headerKey, sealData);
+    if (!constantTimeEqual(computedSealHmac, storedSealHmac)) {
+      throw new Error("Seal verification failed (file tampered or chunks reordered)");
+    }
+    const plaintextParts = [];
+    for (const line of chunkLines) {
+      const payload = fromBase64(line);
+      const decrypted = decryptChunk(encKey, payload, header.fileId);
+      plaintextParts.push(new TextDecoder().decode(decrypted));
+    }
+    return plaintextParts.join("");
+  } finally {
+    zeroize(masterKey, encKey, headerKey, nonceKey);
+  }
+}
+function parsePreviousFileHeader(fileContent, password) {
+  try {
+    const lines = fileContent.split("\n");
+    if (lines.length > 0 && lines[lines.length - 1] === "") lines.pop();
+    if (lines.length < 3) return void 0;
+    const headerLine = lines[0];
+    const header = parseHeader(headerLine);
+    const authLine = lines[1];
+    const authMatch = authLine.match(/^hdrauth_b64=([A-Za-z0-9+/=]+)$/);
+    if (!authMatch) return void 0;
+    const headerHmac = fromBase64(authMatch[1]);
+    const masterKey = deriveMasterKey(password, header.salt, header.scrypt);
+    const { headerKey } = deriveKeys(masterKey);
+    if (!verifyHeader(headerKey, headerLine, headerHmac)) {
+      zeroize(masterKey, headerKey);
+      return void 0;
+    }
+    zeroize(headerKey);
+    return { salt: header.salt, fileId: header.fileId, masterKey };
+  } catch {
+    return void 0;
+  }
+}
+
+// src/seal.ts
+import { hmac as hmac4 } from "@noble/hashes/hmac";
+import { sha256 as sha2565 } from "@noble/hashes/sha256";
+async function verifySeal(fileContent, password) {
+  const lines = fileContent.split("\n");
+  if (lines.length > 0 && lines[lines.length - 1] === "") lines.pop();
+  if (lines.length < 3) throw new Error("Invalid mdenc file: too few lines");
+  const headerLine = lines[0];
+  const header = parseHeader(headerLine);
+  const authLine = lines[1];
+  const authMatch = authLine.match(/^hdrauth_b64=([A-Za-z0-9+/=]+)$/);
+  if (!authMatch) throw new Error("Invalid mdenc file: missing hdrauth_b64 line");
+  const headerHmac = fromBase64(authMatch[1]);
+  const masterKey = deriveMasterKey(password, header.salt, header.scrypt);
+  const { headerKey, nonceKey } = deriveKeys(masterKey);
+  try {
+    if (!verifyHeader(headerKey, headerLine, headerHmac)) {
+      throw new Error("Header authentication failed");
+    }
+    const chunkAndSealLines = lines.slice(2);
+    const sealIndex = chunkAndSealLines.findIndex((l) => l.startsWith("seal_b64="));
+    if (sealIndex < 0) {
+      throw new Error("File is not sealed: no seal_b64 line found");
+    }
+    const chunkLines = chunkAndSealLines.slice(0, sealIndex);
+    const sealMatch = chunkAndSealLines[sealIndex].match(/^seal_b64=([A-Za-z0-9+/=]+)$/);
+    if (!sealMatch) throw new Error("Invalid seal line");
+    const storedHmac = fromBase64(sealMatch[1]);
+    const sealInput = headerLine + "\n" + authLine + "\n" + chunkLines.join("\n");
+    const sealData = new TextEncoder().encode(sealInput);
+    const computed = hmac4(sha2565, headerKey, sealData);
+    return constantTimeEqual(computed, storedHmac);
+  } finally {
+    zeroize(masterKey, headerKey, nonceKey);
+  }
+}
+export {
+  ChunkingStrategy,
+  DEFAULT_SCRYPT_PARAMS,
+  decrypt,
+  encrypt,
+  verifySeal
+};
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/types.ts","../src/encrypt.ts","../src/chunking.ts","../src/kdf.ts","../src/crypto-utils.ts","../src/aead.ts","../src/header.ts","../src/seal.ts"],"sourcesContent":["export interface ScryptParams {\n  N: number;  // CPU/memory cost (default 16384 = 2^14, ~16 MiB with r=8)\n  r: number;  // block size (default 8)\n  p: number;  // parallelism (default 1)\n}\n\nexport const DEFAULT_SCRYPT_PARAMS: ScryptParams = {\n  N: 16384,\n  r: 8,\n  p: 1,\n};\n\nexport const SCRYPT_BOUNDS = {\n  N: { min: 1024, max: 1048576 },       // 2^10 – 2^20\n  r: { min: 1, max: 64 },\n  p: { min: 1, max: 16 },\n} as const;\n\nexport interface MdencHeader {\n  version: 'v1';\n  salt: Uint8Array;        // 16 bytes\n  fileId: Uint8Array;      // 16 bytes\n  scrypt: ScryptParams;\n}\n\nexport interface MdencChunk {\n  payload: Uint8Array;     // nonce || ciphertext || tag\n}\n\nexport interface MdencFile {\n  header: MdencHeader;\n  headerLine: string;\n  headerHmac: Uint8Array;\n  chunks: MdencChunk[];\n  sealHmac: Uint8Array;    // file-level HMAC\n}\n\nexport enum ChunkingStrategy {\n  Paragraph = 'paragraph',\n  FixedSize = 'fixed-size',\n}\n\nexport interface EncryptOptions {\n  chunking?: ChunkingStrategy;\n  maxChunkSize?: number;      // bytes, default 65536 (64 KiB)\n  fixedChunkSize?: number;    // bytes, for fixed-size chunking\n  scrypt?: ScryptParams;\n  previousFile?: string;      // previous encrypted file content for ciphertext reuse\n}\n\nexport interface DecryptOptions {\n  // Reserved for future options\n}\n","import { hmac } from '@noble/hashes/hmac';\nimport { sha256 } from '@noble/hashes/sha256';\nimport { chunkByParagraph, chunkByFixedSize } from './chunking.js';\nimport { deriveMasterKey, deriveKeys } from './kdf.js';\nimport { encryptChunk, decryptChunk } from './aead.js';\nimport {\n  serializeHeader,\n  parseHeader,\n  authenticateHeader,\n  verifyHeader,\n  generateSalt,\n  generateFileId,\n  toBase64,\n  fromBase64,\n} from './header.js';\nimport { ChunkingStrategy, DEFAULT_SCRYPT_PARAMS } from './types.js';\nimport type { EncryptOptions, MdencHeader } from './types.js';\nimport { constantTimeEqual, zeroize } from './crypto-utils.js';\n\nexport async function encrypt(\n  plaintext: string,\n  password: string,\n  options?: EncryptOptions,\n): Promise<string> {\n  const chunking = options?.chunking ?? ChunkingStrategy.Paragraph;\n  const maxChunkSize = options?.maxChunkSize ?? 65536;\n  const scryptParams = options?.scrypt ?? DEFAULT_SCRYPT_PARAMS;\n\n  // Chunk the plaintext\n  let chunks: string[];\n  if (chunking === ChunkingStrategy.FixedSize) {\n    const fixedSize = options?.fixedChunkSize ?? 4096;\n    chunks = chunkByFixedSize(plaintext, fixedSize);\n  } else {\n    chunks = chunkByParagraph(plaintext, maxChunkSize);\n  }\n\n  // If previousFile provided, extract salt/fileId/keys from its header to avoid\n  // deriving the same master key twice (same password + same salt).\n  let salt: Uint8Array;\n  let fileId: Uint8Array;\n  let masterKey: Uint8Array;\n\n  const prev = options?.previousFile\n    ? parsePreviousFileHeader(options.previousFile, password)\n    : undefined;\n\n  if (prev) {\n    salt = prev.salt;\n    fileId = prev.fileId;\n    masterKey = prev.masterKey;\n  } else {\n    salt = generateSalt();\n    fileId = generateFileId();\n    masterKey = deriveMasterKey(password, salt, scryptParams);\n  }\n\n  const { encKey, headerKey, nonceKey } = deriveKeys(masterKey);\n\n  try {\n    // Build header\n    const header: MdencHeader = { version: 'v1', salt, fileId, scrypt: scryptParams };\n    const headerLine = serializeHeader(header);\n    const headerHmac = authenticateHeader(headerKey, headerLine);\n    const headerAuthLine = `hdrauth_b64=${toBase64(headerHmac)}`;\n\n    // Encrypt chunks — deterministic encryption handles reuse automatically\n    const chunkLines: string[] = [];\n    for (const chunkText of chunks) {\n      const chunkBytes = new TextEncoder().encode(chunkText);\n      const payload = encryptChunk(encKey, nonceKey, chunkBytes, fileId);\n      chunkLines.push(toBase64(payload));\n    }\n\n    // Compute seal HMAC over header + auth + chunk lines\n    const sealInput = headerLine + '\\n' + headerAuthLine + '\\n' + chunkLines.join('\\n');\n    const sealData = new TextEncoder().encode(sealInput);\n    const sealHmac = hmac(sha256, headerKey, sealData);\n    const sealLine = `seal_b64=${toBase64(sealHmac)}`;\n\n    return [headerLine, headerAuthLine, ...chunkLines, sealLine, ''].join('\\n');\n  } finally {\n    zeroize(masterKey, encKey, headerKey, nonceKey);\n  }\n}\n\nexport async function decrypt(\n  fileContent: string,\n  password: string,\n): Promise<string> {\n  const lines = fileContent.split('\\n');\n\n  // Remove trailing empty line if present\n  if (lines.length > 0 && lines[lines.length - 1] === '') {\n    lines.pop();\n  }\n\n  if (lines.length < 3) {\n    throw new Error('Invalid mdenc file: too few lines');\n  }\n\n  // Parse header\n  const headerLine = lines[0];\n  const header = parseHeader(headerLine);\n\n  // Parse header auth\n  const authLine = lines[1];\n  const authMatch = authLine.match(/^hdrauth_b64=([A-Za-z0-9+/=]+)$/);\n  if (!authMatch) {\n    throw new Error('Invalid mdenc file: missing hdrauth_b64 line');\n  }\n  const headerHmac = fromBase64(authMatch[1]);\n\n  // Derive keys\n  const masterKey = deriveMasterKey(password, header.salt, header.scrypt);\n  const { encKey, headerKey, nonceKey } = deriveKeys(masterKey);\n\n  try {\n    // Verify header HMAC\n    if (!verifyHeader(headerKey, headerLine, headerHmac)) {\n      throw new Error('Header authentication failed (wrong password or tampered header)');\n    }\n\n    // Collect chunk lines and seal line\n    const remaining = lines.slice(2);\n    const sealIndex = remaining.findIndex(l => l.startsWith('seal_b64='));\n    if (sealIndex < 0) {\n      throw new Error('Invalid mdenc file: missing seal');\n    }\n\n    const chunkLines = remaining.slice(0, sealIndex);\n    if (chunkLines.length === 0) {\n      throw new Error('Invalid mdenc file: no chunk lines');\n    }\n\n    // Verify seal HMAC\n    const sealMatch = remaining[sealIndex].match(/^seal_b64=([A-Za-z0-9+/=]+)$/);\n    if (!sealMatch) throw new Error('Invalid mdenc file: malformed seal line');\n    const storedSealHmac = fromBase64(sealMatch[1]);\n\n    const sealInput = headerLine + '\\n' + authLine + '\\n' + chunkLines.join('\\n');\n    const sealData = new TextEncoder().encode(sealInput);\n    const computedSealHmac = hmac(sha256, headerKey, sealData);\n    if (!constantTimeEqual(computedSealHmac, storedSealHmac)) {\n      throw new Error('Seal verification failed (file tampered or chunks reordered)');\n    }\n\n    // Decrypt chunks\n    const plaintextParts: string[] = [];\n    for (const line of chunkLines) {\n      const payload = fromBase64(line);\n      const decrypted = decryptChunk(encKey, payload, header.fileId);\n      plaintextParts.push(new TextDecoder().decode(decrypted));\n    }\n\n    return plaintextParts.join('');\n  } finally {\n    zeroize(masterKey, encKey, headerKey, nonceKey);\n  }\n}\n\nfunction parsePreviousFileHeader(\n  fileContent: string,\n  password: string,\n): { salt: Uint8Array; fileId: Uint8Array; masterKey: Uint8Array } | undefined {\n  try {\n    const lines = fileContent.split('\\n');\n    if (lines.length > 0 && lines[lines.length - 1] === '') lines.pop();\n    if (lines.length < 3) return undefined;\n\n    const headerLine = lines[0];\n    const header = parseHeader(headerLine);\n\n    // Parse and verify header HMAC before trusting\n    const authLine = lines[1];\n    const authMatch = authLine.match(/^hdrauth_b64=([A-Za-z0-9+/=]+)$/);\n    if (!authMatch) return undefined;\n    const headerHmac = fromBase64(authMatch[1]);\n\n    const masterKey = deriveMasterKey(password, header.salt, header.scrypt);\n    const { headerKey } = deriveKeys(masterKey);\n\n    if (!verifyHeader(headerKey, headerLine, headerHmac)) {\n      zeroize(masterKey, headerKey);\n      return undefined;\n    }\n\n    zeroize(headerKey);\n    // Return masterKey for reuse — same password + same salt produces the same key,\n    // so the caller can skip a redundant scrypt derivation.\n    return { salt: header.salt, fileId: header.fileId, masterKey };\n  } catch {\n    return undefined;\n  }\n}\n","const DEFAULT_MAX_CHUNK_SIZE = 65536; // 64 KiB\n\nexport function chunkByParagraph(text: string, maxSize = DEFAULT_MAX_CHUNK_SIZE): string[] {\n  // Normalize line endings\n  const normalized = text.replace(/\\r\\n/g, '\\n');\n\n  if (normalized.length === 0) {\n    return [''];\n  }\n\n  // Split on runs of 2+ newlines, attaching each boundary to the preceding chunk\n  const chunks: string[] = [];\n  const boundary = /\\n{2,}/g;\n  let lastEnd = 0;\n  let match: RegExpExecArray | null;\n\n  while ((match = boundary.exec(normalized)) !== null) {\n    // Content up to and including the boundary goes to the preceding chunk\n    const chunkEnd = match.index + match[0].length;\n    chunks.push(normalized.slice(lastEnd, chunkEnd));\n    lastEnd = chunkEnd;\n  }\n\n  // Remaining content after the last boundary (or the entire string if no boundary)\n  if (lastEnd < normalized.length) {\n    chunks.push(normalized.slice(lastEnd));\n  } else if (chunks.length === 0) {\n    // No boundaries found and nothing remaining — shouldn't happen since we checked length > 0\n    chunks.push(normalized);\n  }\n\n  // Split any oversized chunks at byte boundaries\n  const result: string[] = [];\n  for (const chunk of chunks) {\n    if (byteLength(chunk) <= maxSize) {\n      result.push(chunk);\n    } else {\n      result.push(...splitAtByteLimit(chunk, maxSize));\n    }\n  }\n\n  return result;\n}\n\nexport function chunkByFixedSize(text: string, size: number): string[] {\n  const normalized = text.replace(/\\r\\n/g, '\\n');\n\n  if (normalized.length === 0) {\n    return [''];\n  }\n\n  const bytes = new TextEncoder().encode(normalized);\n  if (bytes.length <= size) {\n    return [normalized];\n  }\n\n  const chunks: string[] = [];\n  const decoder = new TextDecoder();\n  let offset = 0;\n  while (offset < bytes.length) {\n    const end = Math.min(offset + size, bytes.length);\n    // Avoid splitting in the middle of a multi-byte UTF-8 character\n    let adjusted = end;\n    if (adjusted < bytes.length) {\n      while (adjusted > offset && (bytes[adjusted] & 0xc0) === 0x80) {\n        adjusted--;\n      }\n    }\n    chunks.push(decoder.decode(bytes.slice(offset, adjusted)));\n    offset = adjusted;\n  }\n\n  return chunks;\n}\n\nfunction byteLength(s: string): number {\n  return new TextEncoder().encode(s).length;\n}\n\nfunction splitAtByteLimit(text: string, maxSize: number): string[] {\n  const bytes = new TextEncoder().encode(text);\n  const decoder = new TextDecoder();\n  const parts: string[] = [];\n  let offset = 0;\n  while (offset < bytes.length) {\n    let end = Math.min(offset + maxSize, bytes.length);\n    // Avoid splitting multi-byte characters\n    if (end < bytes.length) {\n      while (end > offset && (bytes[end] & 0xc0) === 0x80) {\n        end--;\n      }\n    }\n    parts.push(decoder.decode(bytes.slice(offset, end)));\n    offset = end;\n  }\n  return parts;\n}\n","import { hkdf } from '@noble/hashes/hkdf';\nimport { sha256 } from '@noble/hashes/sha256';\nimport { scrypt } from '@noble/hashes/scrypt';\nimport type { ScryptParams } from './types.js';\nimport { DEFAULT_SCRYPT_PARAMS } from './types.js';\nimport { zeroize } from './crypto-utils.js';\n\nconst ENC_INFO = new TextEncoder().encode('mdenc-v1-enc');\nconst HDR_INFO = new TextEncoder().encode('mdenc-v1-hdr');\nconst NONCE_INFO = new TextEncoder().encode('mdenc-v1-nonce');\n\nexport function normalizePassword(password: string): Uint8Array {\n  const normalized = password.normalize('NFKC');\n  return new TextEncoder().encode(normalized);\n}\n\nexport function deriveMasterKey(\n  password: string,\n  salt: Uint8Array,\n  params: ScryptParams = DEFAULT_SCRYPT_PARAMS,\n): Uint8Array {\n  const passwordBytes = normalizePassword(password);\n  try {\n    return scrypt(passwordBytes, salt, {\n      N: params.N,\n      r: params.r,\n      p: params.p,\n      dkLen: 32,\n    });\n  } finally {\n    zeroize(passwordBytes);\n  }\n}\n\nexport function deriveKeys(masterKey: Uint8Array): { encKey: Uint8Array; headerKey: Uint8Array; nonceKey: Uint8Array } {\n  const encKey = hkdf(sha256, masterKey, undefined, ENC_INFO, 32);\n  const headerKey = hkdf(sha256, masterKey, undefined, HDR_INFO, 32);\n  const nonceKey = hkdf(sha256, masterKey, undefined, NONCE_INFO, 32);\n  return { encKey, headerKey, nonceKey };\n}\n","export function constantTimeEqual(a: Uint8Array, b: Uint8Array): boolean {\n  if (a.length !== b.length) return false;\n  let diff = 0;\n  for (let i = 0; i < a.length; i++) {\n    diff |= a[i] ^ b[i];\n  }\n  return diff === 0;\n}\n\nexport function zeroize(...arrays: Uint8Array[]): void {\n  for (const arr of arrays) {\n    arr.fill(0);\n  }\n}\n","import { xchacha20poly1305 } from '@noble/ciphers/chacha';\nimport { hmac } from '@noble/hashes/hmac';\nimport { sha256 } from '@noble/hashes/sha256';\n\nconst NONCE_LENGTH = 24;\n\nexport function buildAAD(fileId: Uint8Array): Uint8Array {\n  const fileIdHex = bytesToHex(fileId);\n  const aadString = `mdenc:v1\\n${fileIdHex}`;\n  return new TextEncoder().encode(aadString);\n}\n\nexport function deriveNonce(nonceKey: Uint8Array, plaintext: Uint8Array): Uint8Array {\n  const full = hmac(sha256, nonceKey, plaintext);\n  return full.slice(0, NONCE_LENGTH);\n}\n\nexport function encryptChunk(\n  encKey: Uint8Array,\n  nonceKey: Uint8Array,\n  plaintext: Uint8Array,\n  fileId: Uint8Array,\n): Uint8Array {\n  const nonce = deriveNonce(nonceKey, plaintext);\n  const aad = buildAAD(fileId);\n  const cipher = xchacha20poly1305(encKey, nonce, aad);\n  const ciphertext = cipher.encrypt(plaintext);\n  // Output: nonce || ciphertext || tag (tag is appended by noble)\n  const result = new Uint8Array(NONCE_LENGTH + ciphertext.length);\n  result.set(nonce, 0);\n  result.set(ciphertext, NONCE_LENGTH);\n  return result;\n}\n\nexport function decryptChunk(\n  encKey: Uint8Array,\n  payload: Uint8Array,\n  fileId: Uint8Array,\n): Uint8Array {\n  if (payload.length < NONCE_LENGTH + 16) {\n    throw new Error('Chunk payload too short');\n  }\n  const nonce = payload.slice(0, NONCE_LENGTH);\n  const ciphertext = payload.slice(NONCE_LENGTH);\n  const aad = buildAAD(fileId);\n  const cipher = xchacha20poly1305(encKey, nonce, aad);\n  try {\n    return cipher.decrypt(ciphertext);\n  } catch {\n    throw new Error('Chunk authentication failed');\n  }\n}\n\nfunction bytesToHex(bytes: Uint8Array): string {\n  let hex = '';\n  for (let i = 0; i < bytes.length; i++) {\n    hex += bytes[i].toString(16).padStart(2, '0');\n  }\n  return hex;\n}\n","import { hmac } from '@noble/hashes/hmac';\nimport { sha256 } from '@noble/hashes/sha256';\nimport { randomBytes } from '@noble/ciphers/webcrypto';\nimport type { MdencHeader, ScryptParams } from './types.js';\nimport { SCRYPT_BOUNDS } from './types.js';\nimport { constantTimeEqual } from './crypto-utils.js';\n\nexport function generateSalt(): Uint8Array {\n  return randomBytes(16);\n}\n\nexport function generateFileId(): Uint8Array {\n  return randomBytes(16);\n}\n\nexport function serializeHeader(header: MdencHeader): string {\n  const saltB64 = toBase64(header.salt);\n  const fileIdB64 = toBase64(header.fileId);\n  const { N, r, p } = header.scrypt;\n  return `mdenc:v1 salt_b64=${saltB64} file_id_b64=${fileIdB64} scrypt=N=${N},r=${r},p=${p}`;\n}\n\nexport function parseHeader(line: string): MdencHeader {\n  if (!line.startsWith('mdenc:v1 ')) {\n    throw new Error('Invalid header: missing mdenc:v1 prefix');\n  }\n\n  const saltMatch = line.match(/salt_b64=([A-Za-z0-9+/=]+)/);\n  if (!saltMatch) throw new Error('Invalid header: missing salt_b64');\n  const salt = fromBase64(saltMatch[1]);\n  if (salt.length !== 16) throw new Error('Invalid header: salt must be 16 bytes');\n\n  const fileIdMatch = line.match(/file_id_b64=([A-Za-z0-9+/=]+)/);\n  if (!fileIdMatch) throw new Error('Invalid header: missing file_id_b64');\n  const fileId = fromBase64(fileIdMatch[1]);\n  if (fileId.length !== 16) throw new Error('Invalid header: file_id must be 16 bytes');\n\n  const scryptMatch = line.match(/scrypt=N=(\\d+),r=(\\d+),p=(\\d+)/);\n  if (!scryptMatch) throw new Error('Invalid header: missing scrypt parameters');\n  const scryptParams: ScryptParams = {\n    N: parseInt(scryptMatch[1], 10),\n    r: parseInt(scryptMatch[2], 10),\n    p: parseInt(scryptMatch[3], 10),\n  };\n\n  validateScryptParams(scryptParams);\n\n  return { version: 'v1', salt, fileId, scrypt: scryptParams };\n}\n\nexport function validateScryptParams(params: ScryptParams): void {\n  const { N, r, p } = SCRYPT_BOUNDS;\n  if (params.N < N.min || params.N > N.max) {\n    throw new Error(`Invalid scrypt N: ${params.N} (must be ${N.min}–${N.max})`);\n  }\n  if (params.r < r.min || params.r > r.max) {\n    throw new Error(`Invalid scrypt r: ${params.r} (must be ${r.min}–${r.max})`);\n  }\n  if (params.p < p.min || params.p > p.max) {\n    throw new Error(`Invalid scrypt p: ${params.p} (must be ${p.min}–${p.max})`);\n  }\n}\n\nexport function authenticateHeader(headerKey: Uint8Array, headerLine: string): Uint8Array {\n  const headerBytes = new TextEncoder().encode(headerLine);\n  return hmac(sha256, headerKey, headerBytes);\n}\n\nexport function verifyHeader(\n  headerKey: Uint8Array,\n  headerLine: string,\n  hmacBytes: Uint8Array,\n): boolean {\n  const computed = authenticateHeader(headerKey, headerLine);\n  return constantTimeEqual(computed, hmacBytes);\n}\n\nexport function toBase64(bytes: Uint8Array): string {\n  return Buffer.from(bytes).toString('base64');\n}\n\nexport function fromBase64(b64: string): Uint8Array {\n  return new Uint8Array(Buffer.from(b64, 'base64'));\n}\n","import { hmac } from '@noble/hashes/hmac';\nimport { sha256 } from '@noble/hashes/sha256';\nimport { deriveMasterKey, deriveKeys } from './kdf.js';\nimport {\n  parseHeader,\n  verifyHeader,\n  fromBase64,\n} from './header.js';\nimport { constantTimeEqual, zeroize } from './crypto-utils.js';\n\nexport async function verifySeal(\n  fileContent: string,\n  password: string,\n): Promise<boolean> {\n  const lines = fileContent.split('\\n');\n  if (lines.length > 0 && lines[lines.length - 1] === '') lines.pop();\n  if (lines.length < 3) throw new Error('Invalid mdenc file: too few lines');\n\n  const headerLine = lines[0];\n  const header = parseHeader(headerLine);\n\n  // Parse header auth\n  const authLine = lines[1];\n  const authMatch = authLine.match(/^hdrauth_b64=([A-Za-z0-9+/=]+)$/);\n  if (!authMatch) throw new Error('Invalid mdenc file: missing hdrauth_b64 line');\n  const headerHmac = fromBase64(authMatch[1]);\n\n  // Derive keys\n  const masterKey = deriveMasterKey(password, header.salt, header.scrypt);\n  const { headerKey, nonceKey } = deriveKeys(masterKey);\n\n  try {\n    // Verify header\n    if (!verifyHeader(headerKey, headerLine, headerHmac)) {\n      throw new Error('Header authentication failed');\n    }\n\n    // Find seal line\n    const chunkAndSealLines = lines.slice(2);\n    const sealIndex = chunkAndSealLines.findIndex(l => l.startsWith('seal_b64='));\n    if (sealIndex < 0) {\n      throw new Error('File is not sealed: no seal_b64 line found');\n    }\n\n    const chunkLines = chunkAndSealLines.slice(0, sealIndex);\n    const sealMatch = chunkAndSealLines[sealIndex].match(/^seal_b64=([A-Za-z0-9+/=]+)$/);\n    if (!sealMatch) throw new Error('Invalid seal line');\n    const storedHmac = fromBase64(sealMatch[1]);\n\n    // Verify seal HMAC (covers header + auth + chunk lines)\n    const sealInput = headerLine + '\\n' + authLine + '\\n' + chunkLines.join('\\n');\n    const sealData = new TextEncoder().encode(sealInput);\n    const computed = hmac(sha256, headerKey, sealData);\n\n    return constantTimeEqual(computed, storedHmac);\n  } finally {\n    zeroize(masterKey, headerKey, nonceKey);\n  }\n}\n"],"mappings":";AAMO,IAAM,wBAAsC;AAAA,EACjD,GAAG;AAAA,EACH,GAAG;AAAA,EACH,GAAG;AACL;AAEO,IAAM,gBAAgB;AAAA,EAC3B,GAAG,EAAE,KAAK,MAAM,KAAK,QAAQ;AAAA;AAAA,EAC7B,GAAG,EAAE,KAAK,GAAG,KAAK,GAAG;AAAA,EACrB,GAAG,EAAE,KAAK,GAAG,KAAK,GAAG;AACvB;AAqBO,IAAK,mBAAL,kBAAKA,sBAAL;AACL,EAAAA,kBAAA,eAAY;AACZ,EAAAA,kBAAA,eAAY;AAFF,SAAAA;AAAA,GAAA;;;ACrCZ,SAAS,QAAAC,aAAY;AACrB,SAAS,UAAAC,eAAc;;;ACDvB,IAAM,yBAAyB;AAExB,SAAS,iBAAiB,MAAc,UAAU,wBAAkC;AAEzF,QAAM,aAAa,KAAK,QAAQ,SAAS,IAAI;AAE7C,MAAI,WAAW,WAAW,GAAG;AAC3B,WAAO,CAAC,EAAE;AAAA,EACZ;AAGA,QAAM,SAAmB,CAAC;AAC1B,QAAM,WAAW;AACjB,MAAI,UAAU;AACd,MAAI;AAEJ,UAAQ,QAAQ,SAAS,KAAK,UAAU,OAAO,MAAM;AAEnD,UAAM,WAAW,MAAM,QAAQ,MAAM,CAAC,EAAE;AACxC,WAAO,KAAK,WAAW,MAAM,SAAS,QAAQ,CAAC;AAC/C,cAAU;AAAA,EACZ;AAGA,MAAI,UAAU,WAAW,QAAQ;AAC/B,WAAO,KAAK,WAAW,MAAM,OAAO,CAAC;AAAA,EACvC,WAAW,OAAO,WAAW,GAAG;AAE9B,WAAO,KAAK,UAAU;AAAA,EACxB;AAGA,QAAM,SAAmB,CAAC;AAC1B,aAAW,SAAS,QAAQ;AAC1B,QAAI,WAAW,KAAK,KAAK,SAAS;AAChC,aAAO,KAAK,KAAK;AAAA,IACnB,OAAO;AACL,aAAO,KAAK,GAAG,iBAAiB,OAAO,OAAO,CAAC;AAAA,IACjD;AAAA,EACF;AAEA,SAAO;AACT;AAEO,SAAS,iBAAiB,MAAc,MAAwB;AACrE,QAAM,aAAa,KAAK,QAAQ,SAAS,IAAI;AAE7C,MAAI,WAAW,WAAW,GAAG;AAC3B,WAAO,CAAC,EAAE;AAAA,EACZ;AAEA,QAAM,QAAQ,IAAI,YAAY,EAAE,OAAO,UAAU;AACjD,MAAI,MAAM,UAAU,MAAM;AACxB,WAAO,CAAC,UAAU;AAAA,EACpB;AAEA,QAAM,SAAmB,CAAC;AAC1B,QAAM,UAAU,IAAI,YAAY;AAChC,MAAI,SAAS;AACb,SAAO,SAAS,MAAM,QAAQ;AAC5B,UAAM,MAAM,KAAK,IAAI,SAAS,MAAM,MAAM,MAAM;AAEhD,QAAI,WAAW;AACf,QAAI,WAAW,MAAM,QAAQ;AAC3B,aAAO,WAAW,WAAW,MAAM,QAAQ,IAAI,SAAU,KAAM;AAC7D;AAAA,MACF;AAAA,IACF;AACA,WAAO,KAAK,QAAQ,OAAO,MAAM,MAAM,QAAQ,QAAQ,CAAC,CAAC;AACzD,aAAS;AAAA,EACX;AAEA,SAAO;AACT;AAEA,SAAS,WAAW,GAAmB;AACrC,SAAO,IAAI,YAAY,EAAE,OAAO,CAAC,EAAE;AACrC;AAEA,SAAS,iBAAiB,MAAc,SAA2B;AACjE,QAAM,QAAQ,IAAI,YAAY,EAAE,OAAO,IAAI;AAC3C,QAAM,UAAU,IAAI,YAAY;AAChC,QAAM,QAAkB,CAAC;AACzB,MAAI,SAAS;AACb,SAAO,SAAS,MAAM,QAAQ;AAC5B,QAAI,MAAM,KAAK,IAAI,SAAS,SAAS,MAAM,MAAM;AAEjD,QAAI,MAAM,MAAM,QAAQ;AACtB,aAAO,MAAM,WAAW,MAAM,GAAG,IAAI,SAAU,KAAM;AACnD;AAAA,MACF;AAAA,IACF;AACA,UAAM,KAAK,QAAQ,OAAO,MAAM,MAAM,QAAQ,GAAG,CAAC,CAAC;AACnD,aAAS;AAAA,EACX;AACA,SAAO;AACT;;;AChGA,SAAS,YAAY;AACrB,SAAS,cAAc;AACvB,SAAS,cAAc;;;ACFhB,SAAS,kBAAkB,GAAe,GAAwB;AACvE,MAAI,EAAE,WAAW,EAAE,OAAQ,QAAO;AAClC,MAAI,OAAO;AACX,WAAS,IAAI,GAAG,IAAI,EAAE,QAAQ,KAAK;AACjC,YAAQ,EAAE,CAAC,IAAI,EAAE,CAAC;AAAA,EACpB;AACA,SAAO,SAAS;AAClB;AAEO,SAAS,WAAW,QAA4B;AACrD,aAAW,OAAO,QAAQ;AACxB,QAAI,KAAK,CAAC;AAAA,EACZ;AACF;;;ADNA,IAAM,WAAW,IAAI,YAAY,EAAE,OAAO,cAAc;AACxD,IAAM,WAAW,IAAI,YAAY,EAAE,OAAO,cAAc;AACxD,IAAM,aAAa,IAAI,YAAY,EAAE,OAAO,gBAAgB;AAErD,SAAS,kBAAkB,UAA8B;AAC9D,QAAM,aAAa,SAAS,UAAU,MAAM;AAC5C,SAAO,IAAI,YAAY,EAAE,OAAO,UAAU;AAC5C;AAEO,SAAS,gBACd,UACA,MACA,SAAuB,uBACX;AACZ,QAAM,gBAAgB,kBAAkB,QAAQ;AAChD,MAAI;AACF,WAAO,OAAO,eAAe,MAAM;AAAA,MACjC,GAAG,OAAO;AAAA,MACV,GAAG,OAAO;AAAA,MACV,GAAG,OAAO;AAAA,MACV,OAAO;AAAA,IACT,CAAC;AAAA,EACH,UAAE;AACA,YAAQ,aAAa;AAAA,EACvB;AACF;AAEO,SAAS,WAAW,WAA4F;AACrH,QAAM,SAAS,KAAK,QAAQ,WAAW,QAAW,UAAU,EAAE;AAC9D,QAAM,YAAY,KAAK,QAAQ,WAAW,QAAW,UAAU,EAAE;AACjE,QAAM,WAAW,KAAK,QAAQ,WAAW,QAAW,YAAY,EAAE;AAClE,SAAO,EAAE,QAAQ,WAAW,SAAS;AACvC;;;AEvCA,SAAS,yBAAyB;AAClC,SAAS,YAAY;AACrB,SAAS,UAAAC,eAAc;AAEvB,IAAM,eAAe;AAEd,SAAS,SAAS,QAAgC;AACvD,QAAM,YAAY,WAAW,MAAM;AACnC,QAAM,YAAY;AAAA,EAAa,SAAS;AACxC,SAAO,IAAI,YAAY,EAAE,OAAO,SAAS;AAC3C;AAEO,SAAS,YAAY,UAAsB,WAAmC;AACnF,QAAM,OAAO,KAAKA,SAAQ,UAAU,SAAS;AAC7C,SAAO,KAAK,MAAM,GAAG,YAAY;AACnC;AAEO,SAAS,aACd,QACA,UACA,WACA,QACY;AACZ,QAAM,QAAQ,YAAY,UAAU,SAAS;AAC7C,QAAM,MAAM,SAAS,MAAM;AAC3B,QAAM,SAAS,kBAAkB,QAAQ,OAAO,GAAG;AACnD,QAAM,aAAa,OAAO,QAAQ,SAAS;AAE3C,QAAM,SAAS,IAAI,WAAW,eAAe,WAAW,MAAM;AAC9D,SAAO,IAAI,OAAO,CAAC;AACnB,SAAO,IAAI,YAAY,YAAY;AACnC,SAAO;AACT;AAEO,SAAS,aACd,QACA,SACA,QACY;AACZ,MAAI,QAAQ,SAAS,eAAe,IAAI;AACtC,UAAM,IAAI,MAAM,yBAAyB;AAAA,EAC3C;AACA,QAAM,QAAQ,QAAQ,MAAM,GAAG,YAAY;AAC3C,QAAM,aAAa,QAAQ,MAAM,YAAY;AAC7C,QAAM,MAAM,SAAS,MAAM;AAC3B,QAAM,SAAS,kBAAkB,QAAQ,OAAO,GAAG;AACnD,MAAI;AACF,WAAO,OAAO,QAAQ,UAAU;AAAA,EAClC,QAAQ;AACN,UAAM,IAAI,MAAM,6BAA6B;AAAA,EAC/C;AACF;AAEA,SAAS,WAAW,OAA2B;AAC7C,MAAI,MAAM;AACV,WAAS,IAAI,GAAG,IAAI,MAAM,QAAQ,KAAK;AACrC,WAAO,MAAM,CAAC,EAAE,SAAS,EAAE,EAAE,SAAS,GAAG,GAAG;AAAA,EAC9C;AACA,SAAO;AACT;;;AC3DA,SAAS,QAAAC,aAAY;AACrB,SAAS,UAAAC,eAAc;AACvB,SAAS,mBAAmB;AAKrB,SAAS,eAA2B;AACzC,SAAO,YAAY,EAAE;AACvB;AAEO,SAAS,iBAA6B;AAC3C,SAAO,YAAY,EAAE;AACvB;AAEO,SAAS,gBAAgB,QAA6B;AAC3D,QAAM,UAAU,SAAS,OAAO,IAAI;AACpC,QAAM,YAAY,SAAS,OAAO,MAAM;AACxC,QAAM,EAAE,GAAG,GAAG,EAAE,IAAI,OAAO;AAC3B,SAAO,qBAAqB,OAAO,gBAAgB,SAAS,aAAa,CAAC,MAAM,CAAC,MAAM,CAAC;AAC1F;AAEO,SAAS,YAAY,MAA2B;AACrD,MAAI,CAAC,KAAK,WAAW,WAAW,GAAG;AACjC,UAAM,IAAI,MAAM,yCAAyC;AAAA,EAC3D;AAEA,QAAM,YAAY,KAAK,MAAM,4BAA4B;AACzD,MAAI,CAAC,UAAW,OAAM,IAAI,MAAM,kCAAkC;AAClE,QAAM,OAAO,WAAW,UAAU,CAAC,CAAC;AACpC,MAAI,KAAK,WAAW,GAAI,OAAM,IAAI,MAAM,uCAAuC;AAE/E,QAAM,cAAc,KAAK,MAAM,+BAA+B;AAC9D,MAAI,CAAC,YAAa,OAAM,IAAI,MAAM,qCAAqC;AACvE,QAAM,SAAS,WAAW,YAAY,CAAC,CAAC;AACxC,MAAI,OAAO,WAAW,GAAI,OAAM,IAAI,MAAM,0CAA0C;AAEpF,QAAM,cAAc,KAAK,MAAM,gCAAgC;AAC/D,MAAI,CAAC,YAAa,OAAM,IAAI,MAAM,2CAA2C;AAC7E,QAAM,eAA6B;AAAA,IACjC,GAAG,SAAS,YAAY,CAAC,GAAG,EAAE;AAAA,IAC9B,GAAG,SAAS,YAAY,CAAC,GAAG,EAAE;AAAA,IAC9B,GAAG,SAAS,YAAY,CAAC,GAAG,EAAE;AAAA,EAChC;AAEA,uBAAqB,YAAY;AAEjC,SAAO,EAAE,SAAS,MAAM,MAAM,QAAQ,QAAQ,aAAa;AAC7D;AAEO,SAAS,qBAAqB,QAA4B;AAC/D,QAAM,EAAE,GAAG,GAAG,EAAE,IAAI;AACpB,MAAI,OAAO,IAAI,EAAE,OAAO,OAAO,IAAI,EAAE,KAAK;AACxC,UAAM,IAAI,MAAM,qBAAqB,OAAO,CAAC,aAAa,EAAE,GAAG,SAAI,EAAE,GAAG,GAAG;AAAA,EAC7E;AACA,MAAI,OAAO,IAAI,EAAE,OAAO,OAAO,IAAI,EAAE,KAAK;AACxC,UAAM,IAAI,MAAM,qBAAqB,OAAO,CAAC,aAAa,EAAE,GAAG,SAAI,EAAE,GAAG,GAAG;AAAA,EAC7E;AACA,MAAI,OAAO,IAAI,EAAE,OAAO,OAAO,IAAI,EAAE,KAAK;AACxC,UAAM,IAAI,MAAM,qBAAqB,OAAO,CAAC,aAAa,EAAE,GAAG,SAAI,EAAE,GAAG,GAAG;AAAA,EAC7E;AACF;AAEO,SAAS,mBAAmB,WAAuB,YAAgC;AACxF,QAAM,cAAc,IAAI,YAAY,EAAE,OAAO,UAAU;AACvD,SAAOC,MAAKC,SAAQ,WAAW,WAAW;AAC5C;AAEO,SAAS,aACd,WACA,YACA,WACS;AACT,QAAM,WAAW,mBAAmB,WAAW,UAAU;AACzD,SAAO,kBAAkB,UAAU,SAAS;AAC9C;AAEO,SAAS,SAAS,OAA2B;AAClD,SAAO,OAAO,KAAK,KAAK,EAAE,SAAS,QAAQ;AAC7C;AAEO,SAAS,WAAW,KAAyB;AAClD,SAAO,IAAI,WAAW,OAAO,KAAK,KAAK,QAAQ,CAAC;AAClD;;;ALhEA,eAAsB,QACpB,WACA,UACA,SACiB;AACjB,QAAM,WAAW,SAAS;AAC1B,QAAM,eAAe,SAAS,gBAAgB;AAC9C,QAAM,eAAe,SAAS,UAAU;AAGxC,MAAI;AACJ,MAAI,2CAAyC;AAC3C,UAAM,YAAY,SAAS,kBAAkB;AAC7C,aAAS,iBAAiB,WAAW,SAAS;AAAA,EAChD,OAAO;AACL,aAAS,iBAAiB,WAAW,YAAY;AAAA,EACnD;AAIA,MAAI;AACJ,MAAI;AACJ,MAAI;AAEJ,QAAM,OAAO,SAAS,eAClB,wBAAwB,QAAQ,cAAc,QAAQ,IACtD;AAEJ,MAAI,MAAM;AACR,WAAO,KAAK;AACZ,aAAS,KAAK;AACd,gBAAY,KAAK;AAAA,EACnB,OAAO;AACL,WAAO,aAAa;AACpB,aAAS,eAAe;AACxB,gBAAY,gBAAgB,UAAU,MAAM,YAAY;AAAA,EAC1D;AAEA,QAAM,EAAE,QAAQ,WAAW,SAAS,IAAI,WAAW,SAAS;AAE5D,MAAI;AAEF,UAAM,SAAsB,EAAE,SAAS,MAAM,MAAM,QAAQ,QAAQ,aAAa;AAChF,UAAM,aAAa,gBAAgB,MAAM;AACzC,UAAM,aAAa,mBAAmB,WAAW,UAAU;AAC3D,UAAM,iBAAiB,eAAe,SAAS,UAAU,CAAC;AAG1D,UAAM,aAAuB,CAAC;AAC9B,eAAW,aAAa,QAAQ;AAC9B,YAAM,aAAa,IAAI,YAAY,EAAE,OAAO,SAAS;AACrD,YAAM,UAAU,aAAa,QAAQ,UAAU,YAAY,MAAM;AACjE,iBAAW,KAAK,SAAS,OAAO,CAAC;AAAA,IACnC;AAGA,UAAM,YAAY,aAAa,OAAO,iBAAiB,OAAO,WAAW,KAAK,IAAI;AAClF,UAAM,WAAW,IAAI,YAAY,EAAE,OAAO,SAAS;AACnD,UAAM,WAAWC,MAAKC,SAAQ,WAAW,QAAQ;AACjD,UAAM,WAAW,YAAY,SAAS,QAAQ,CAAC;AAE/C,WAAO,CAAC,YAAY,gBAAgB,GAAG,YAAY,UAAU,EAAE,EAAE,KAAK,IAAI;AAAA,EAC5E,UAAE;AACA,YAAQ,WAAW,QAAQ,WAAW,QAAQ;AAAA,EAChD;AACF;AAEA,eAAsB,QACpB,aACA,UACiB;AACjB,QAAM,QAAQ,YAAY,MAAM,IAAI;AAGpC,MAAI,MAAM,SAAS,KAAK,MAAM,MAAM,SAAS,CAAC,MAAM,IAAI;AACtD,UAAM,IAAI;AAAA,EACZ;AAEA,MAAI,MAAM,SAAS,GAAG;AACpB,UAAM,IAAI,MAAM,mCAAmC;AAAA,EACrD;AAGA,QAAM,aAAa,MAAM,CAAC;AAC1B,QAAM,SAAS,YAAY,UAAU;AAGrC,QAAM,WAAW,MAAM,CAAC;AACxB,QAAM,YAAY,SAAS,MAAM,iCAAiC;AAClE,MAAI,CAAC,WAAW;AACd,UAAM,IAAI,MAAM,8CAA8C;AAAA,EAChE;AACA,QAAM,aAAa,WAAW,UAAU,CAAC,CAAC;AAG1C,QAAM,YAAY,gBAAgB,UAAU,OAAO,MAAM,OAAO,MAAM;AACtE,QAAM,EAAE,QAAQ,WAAW,SAAS,IAAI,WAAW,SAAS;AAE5D,MAAI;AAEF,QAAI,CAAC,aAAa,WAAW,YAAY,UAAU,GAAG;AACpD,YAAM,IAAI,MAAM,kEAAkE;AAAA,IACpF;AAGA,UAAM,YAAY,MAAM,MAAM,CAAC;AAC/B,UAAM,YAAY,UAAU,UAAU,OAAK,EAAE,WAAW,WAAW,CAAC;AACpE,QAAI,YAAY,GAAG;AACjB,YAAM,IAAI,MAAM,kCAAkC;AAAA,IACpD;AAEA,UAAM,aAAa,UAAU,MAAM,GAAG,SAAS;AAC/C,QAAI,WAAW,WAAW,GAAG;AAC3B,YAAM,IAAI,MAAM,oCAAoC;AAAA,IACtD;AAGA,UAAM,YAAY,UAAU,SAAS,EAAE,MAAM,8BAA8B;AAC3E,QAAI,CAAC,UAAW,OAAM,IAAI,MAAM,yCAAyC;AACzE,UAAM,iBAAiB,WAAW,UAAU,CAAC,CAAC;AAE9C,UAAM,YAAY,aAAa,OAAO,WAAW,OAAO,WAAW,KAAK,IAAI;AAC5E,UAAM,WAAW,IAAI,YAAY,EAAE,OAAO,SAAS;AACnD,UAAM,mBAAmBD,MAAKC,SAAQ,WAAW,QAAQ;AACzD,QAAI,CAAC,kBAAkB,kBAAkB,cAAc,GAAG;AACxD,YAAM,IAAI,MAAM,8DAA8D;AAAA,IAChF;AAGA,UAAM,iBAA2B,CAAC;AAClC,eAAW,QAAQ,YAAY;AAC7B,YAAM,UAAU,WAAW,IAAI;AAC/B,YAAM,YAAY,aAAa,QAAQ,SAAS,OAAO,MAAM;AAC7D,qBAAe,KAAK,IAAI,YAAY,EAAE,OAAO,SAAS,CAAC;AAAA,IACzD;AAEA,WAAO,eAAe,KAAK,EAAE;AAAA,EAC/B,UAAE;AACA,YAAQ,WAAW,QAAQ,WAAW,QAAQ;AAAA,EAChD;AACF;AAEA,SAAS,wBACP,aACA,UAC6E;AAC7E,MAAI;AACF,UAAM,QAAQ,YAAY,MAAM,IAAI;AACpC,QAAI,MAAM,SAAS,KAAK,MAAM,MAAM,SAAS,CAAC,MAAM,GAAI,OAAM,IAAI;AAClE,QAAI,MAAM,SAAS,EAAG,QAAO;AAE7B,UAAM,aAAa,MAAM,CAAC;AAC1B,UAAM,SAAS,YAAY,UAAU;AAGrC,UAAM,WAAW,MAAM,CAAC;AACxB,UAAM,YAAY,SAAS,MAAM,iCAAiC;AAClE,QAAI,CAAC,UAAW,QAAO;AACvB,UAAM,aAAa,WAAW,UAAU,CAAC,CAAC;AAE1C,UAAM,YAAY,gBAAgB,UAAU,OAAO,MAAM,OAAO,MAAM;AACtE,UAAM,EAAE,UAAU,IAAI,WAAW,SAAS;AAE1C,QAAI,CAAC,aAAa,WAAW,YAAY,UAAU,GAAG;AACpD,cAAQ,WAAW,SAAS;AAC5B,aAAO;AAAA,IACT;AAEA,YAAQ,SAAS;AAGjB,WAAO,EAAE,MAAM,OAAO,MAAM,QAAQ,OAAO,QAAQ,UAAU;AAAA,EAC/D,QAAQ;AACN,WAAO;AAAA,EACT;AACF;;;AMlMA,SAAS,QAAAC,aAAY;AACrB,SAAS,UAAAC,eAAc;AASvB,eAAsB,WACpB,aACA,UACkB;AAClB,QAAM,QAAQ,YAAY,MAAM,IAAI;AACpC,MAAI,MAAM,SAAS,KAAK,MAAM,MAAM,SAAS,CAAC,MAAM,GAAI,OAAM,IAAI;AAClE,MAAI,MAAM,SAAS,EAAG,OAAM,IAAI,MAAM,mCAAmC;AAEzE,QAAM,aAAa,MAAM,CAAC;AAC1B,QAAM,SAAS,YAAY,UAAU;AAGrC,QAAM,WAAW,MAAM,CAAC;AACxB,QAAM,YAAY,SAAS,MAAM,iCAAiC;AAClE,MAAI,CAAC,UAAW,OAAM,IAAI,MAAM,8CAA8C;AAC9E,QAAM,aAAa,WAAW,UAAU,CAAC,CAAC;AAG1C,QAAM,YAAY,gBAAgB,UAAU,OAAO,MAAM,OAAO,MAAM;AACtE,QAAM,EAAE,WAAW,SAAS,IAAI,WAAW,SAAS;AAEpD,MAAI;AAEF,QAAI,CAAC,aAAa,WAAW,YAAY,UAAU,GAAG;AACpD,YAAM,IAAI,MAAM,8BAA8B;AAAA,IAChD;AAGA,UAAM,oBAAoB,MAAM,MAAM,CAAC;AACvC,UAAM,YAAY,kBAAkB,UAAU,OAAK,EAAE,WAAW,WAAW,CAAC;AAC5E,QAAI,YAAY,GAAG;AACjB,YAAM,IAAI,MAAM,4CAA4C;AAAA,IAC9D;AAEA,UAAM,aAAa,kBAAkB,MAAM,GAAG,SAAS;AACvD,UAAM,YAAY,kBAAkB,SAAS,EAAE,MAAM,8BAA8B;AACnF,QAAI,CAAC,UAAW,OAAM,IAAI,MAAM,mBAAmB;AACnD,UAAM,aAAa,WAAW,UAAU,CAAC,CAAC;AAG1C,UAAM,YAAY,aAAa,OAAO,WAAW,OAAO,WAAW,KAAK,IAAI;AAC5E,UAAM,WAAW,IAAI,YAAY,EAAE,OAAO,SAAS;AACnD,UAAM,WAAWC,MAAKC,SAAQ,WAAW,QAAQ;AAEjD,WAAO,kBAAkB,UAAU,UAAU;AAAA,EAC/C,UAAE;AACA,YAAQ,WAAW,WAAW,QAAQ;AAAA,EACxC;AACF;","names":["ChunkingStrategy","hmac","sha256","sha256","hmac","sha256","hmac","sha256","hmac","sha256","hmac","sha256","hmac","sha256"]}

package/package.json

@@ -0,0 +1,66 @@
+{
+  "name": "mdenc",
+  "version": "0.1.0",
+  "description": "Diff-friendly encrypted Markdown format",
+  "type": "module",
+  "main": "./dist/index.cjs",
+  "module": "./dist/index.js",
+  "types": "./dist/index.d.ts",
+  "exports": {
+    ".": {
+      "import": {
+        "types": "./dist/index.d.ts",
+        "default": "./dist/index.js"
+      },
+      "require": {
+        "types": "./dist/index.d.cts",
+        "default": "./dist/index.cjs"
+      }
+    }
+  },
+  "bin": {
+    "mdenc": "./dist/cli.js"
+  },
+  "files": [
+    "dist"
+  ],
+  "scripts": {
+    "build": "bun x tsup",
+    "test": "bun test",
+    "test:watch": "bun test --watch",
+    "lint": "bun x tsc --noEmit",
+    "prepublishOnly": "bun run build",
+    "release": "scripts/release.sh",
+    "release:minor": "scripts/release.sh minor",
+    "release:major": "scripts/release.sh major"
+  },
+  "keywords": [
+    "markdown",
+    "encryption",
+    "git",
+    "diff-friendly",
+    "aead"
+  ],
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/yogh-io/mdenc-v1.git"
+  },
+  "homepage": "https://github.com/yogh-io/mdenc-v1#readme",
+  "bugs": {
+    "url": "https://github.com/yogh-io/mdenc-v1/issues"
+  },
+  "engines": {
+    "node": ">=18"
+  },
+  "license": "ISC",
+  "dependencies": {
+    "@noble/ciphers": "^1.2.1",
+    "@noble/hashes": "^1.7.1"
+  },
+  "devDependencies": {
+    "@types/node": "^25.3.3",
+    "tsup": "^8.4.0",
+    "typescript": "^5.7.3",
+    "@types/bun": "^1.2.4"
+  }
+}