📦 secure-compare

Securely compare two strings, copied from cryptiles

Author

Vadim Demedes

License

MIT

Unpacked Size

N/A

Packed Size

1.11 KB

Last Activity

about 8 years ago

Wkly Downloads

322K

Unpacked Size

N/A

Packed Size

1.11 KB

License

MIT

Author

Vadim Demedes

Last Activity

about 8 years ago

Dependencies Overview

Dependencies (0)

There are not dependencies

Peer Dependencies (0)

There are not dependencies

Dev Dependencies (2)

chai ^2.2.0 mocha ^2.2.1

Versions Overview

Last Version

3.0.1

Last Version Released

over 10 years ago

N. of Versions

Repository Overview

Default Branch

master

Is Archived?

Is Disabled?

Is Fork?

YES

Is Locked?

Security Policy Enabled?

Latest Commits

Last 10 commits in the repository

add a note about crypto.timingSafeEqual

about 8 years ago

Merge pull request #2 from yamikuronue/master Improve tests

over 9 years ago

Improved tests

Bay

over 9 years ago

Release v3.0.1

over 10 years ago

Merge pull request #1 from daguej/fix Fix major oopsie

over 10 years ago

Fix major oopsie `compare` was actually comparing `a` with `a`, meaning the check passes for *any* two strings of the same length.

Josh Dague

over 10 years ago

init

almost 11 years ago

Merge pull request #12 from hapijs/test-cleanup Removed outer descibe.

Adam Bretz

over 11 years ago

Removed outer descibe.

Adam Bretz

over 11 years ago

Merge pull request #11 from hapijs/testcleanup Cleaned up test verbiage.

Adam Bretz

over 11 years ago

Top Contributors

The top contributors considering the last 100 commits & PRs

arb

Open PRs (0)

Currently active PR in the repository

There are not PRs to display

Open Issues (0)

Currently active PR in the repository

There are not issues to display

Open Discussions (0)

Currently open discussions in the repository

There are not discussions to display

This site is an independent open-source project and is not affiliated with, endorsed by, or sponsored by npm, Inc. or GitHub, Inc. The name “npm” is a registered trademark of npm, Inc., used here solely to describe compatibility and reference publicly available npm package data.

📦 secure-compare

Securely compare two strings, copied from cryptiles

Author

Vadim Demedes

License

MIT

Unpacked Size

N/A

Packed Size

1.11 KB

Last Activity

about 8 years ago

Wkly Downloads

322K

Unpacked Size

N/A

Packed Size

1.11 KB

License

MIT

Author

Vadim Demedes

Last Activity

about 8 years ago

Dependencies Overview

Dependencies (0)

There are not dependencies

Peer Dependencies (0)

There are not dependencies

Dev Dependencies (2)

chai ^2.2.0 mocha ^2.2.1

Versions Overview

Last Version

3.0.1

Last Version Released

over 10 years ago

N. of Versions

Security Overview

Vulnerabilities

Last Version with Vulnerabilities

0.9.0

Vulnerabilities Tracker

Historycal data about package vulnerabilities across all the stable versions

Vulnerabilites Summary

Secure-compare version 0.9.0 has one security vulnerability. Version 3.0.1 has no known security vulnerabilities, suggesting an improvement in security over time.

Complete Security Overview

Popularity Overview

GH Stars

GH Forks

GH Watchers

Downloads History

Historycal data about package downloads in the last 18 months

Repository Overview

Default Branch

master

Is Archived?

Is Disabled?

Is Fork?

YES

Is Locked?

Security Policy Enabled?

Latest Commits

Last 10 commits in the repository

add a note about crypto.timingSafeEqual

about 8 years ago

Merge pull request #2 from yamikuronue/master Improve tests

over 9 years ago

Improved tests

Bay

over 9 years ago

Release v3.0.1

over 10 years ago

Merge pull request #1 from daguej/fix Fix major oopsie

over 10 years ago

Fix major oopsie `compare` was actually comparing `a` with `a`, meaning the check passes for *any* two strings of the same length.

Josh Dague

over 10 years ago

init

almost 11 years ago

Merge pull request #12 from hapijs/test-cleanup Removed outer descibe.

Adam Bretz

over 11 years ago

Removed outer descibe.

Adam Bretz

over 11 years ago

Merge pull request #11 from hapijs/testcleanup Cleaned up test verbiage.

Adam Bretz

over 11 years ago

Top Contributors

The top contributors considering the last 100 commits & PRs

arb

Open PRs (0)

Currently active PR in the repository

There are not PRs to display

Open Issues (0)

Currently active PR in the repository

There are not issues to display

Open Discussions (0)

Currently open discussions in the repository

There are not discussions to display

Package Summary

secure-compare offers constant-time string comparison to mitigate timing attacks. It's crucial for security-sensitive applications where subtle timing differences in string comparisons could leak information. Unlike standard string comparison, which stops at the first mismatch, this library ensures all characters are always compared, making timing analysis significantly harder. It's perfect for comparing passwords, API keys, or any secret values. Easy to integrate and a vital tool for enhancing application security against timing-based vulnerabilities.

📦 secure-compare

Dependencies Overview

Dependencies (0)

Peer Dependencies (0)

Dev Dependencies (2)

Versions Overview

Repository Overview

Latest Commits

Top Contributors

Open PRs (0)

Open Issues (0)

Open Discussions (0)

📦 secure-compare

Dependencies Overview

Dependencies (0)

Peer Dependencies (0)

Dev Dependencies (2)

Versions Overview

Security Overview

Vulnerabilities Tracker

Vulnerabilites Summary

Popularity Overview

Downloads History

Repository Overview

Latest Commits

Top Contributors

Open PRs (0)

Open Issues (0)

Open Discussions (0)

Package Summary

Release Frequency

Popularity Overview

Downloads History

Security Overview

Vulnerabilities Tracker

Vulnerabilites Summary