Skip to content
Permalink

Comparing changes

Choose two branches to see what’s changed or to start a new pull request. If you need to, you can also or learn more about diff comparisons.

Open a pull request

Create a new pull request by comparing changes across two branches. If you need to, you can also . Learn more about diff comparisons here.
base repository: csnp/cryptodeps
Failed to load repositories. Confirm that selected base ref is valid, then try again.
Loading
base: v1.2.0
Choose a base ref
...
head repository: csnp/cryptodeps
Failed to load repositories. Confirm that selected head ref is valid, then try again.
Loading
compare: v1.2.1
Choose a head ref
  • 2 commits
  • 4 files changed
  • 1 contributor

Commits on Dec 27, 2025

  1. fix: Improve remediation database accuracy and coverage 

    - Add 30+ common algorithms to remediation database:
  - Authenticated encryption: ChaCha20-Poly1305, AES-GCM, XSalsa20-Poly1305
  - MACs: HMAC, HMAC-SHA256, HMAC-SHA512, Poly1305
  - Post-quantum: ML-KEM, ML-DSA (mark as quantum-safe)
  - NIST curves: P-256, P-384, P-521, secp256k1
  - RSA variants: RSA-OAEP, RSA-PSS, PS256/384/512
  - ECDH variants: ECDH-ES
  - Hash functions: BLAKE2b, BLAKE2s, BLAKE3
  - Chinese algorithms: SM2, SM3, SM4

- Fix @noble/ed25519 database entry (removed false positives)

- Fix Maven property placeholder resolution:
  - Parse <properties> section and resolve ${...} references
  - Now shows actual version (1.77) instead of ${bouncycastle.version}
    @abdelsfane
    abdelsfane committed Dec 27, 2025
    Configuration menu
    Copy the full SHA
    d78da2f View commit details
    Browse the repository at this point in the history

  2. docs: Update CHANGELOG for v1.2.1 release

    @abdelsfane
    abdelsfane committed Dec 27, 2025
    Configuration menu
    Copy the full SHA
    70dd21e View commit details
    Browse the repository at this point in the history
Loading