npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@voideddev/enc-server

v0.3.0

Published

Server-side hashing, compression, encryption, and fused artifact library backed by Rust

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Maintainers

voideddevvoideddev

Keywords

encryptioncompressionfused-shellsecurityrustnative

Readme

@voideddev/enc-server

@voideddev/enc-server is the Node.js package for Voided's native Rust-backed runtime. It exposes synchronous server-side APIs for hashing, compression, authenticated encryption, fused shell operations, and full-flow fused artifacts.

Under the hood, the package is layered like this:

  • voided-core
    • source-of-truth Rust implementation
  • voided-node
    • N-API binding over voided-core
  • @voideddev/enc-server
    • TypeScript package surface over the native binding

Contents

What This Package Is For

Use @voideddev/enc-server when you want:

  • Node.js access to the Voided native runtime
  • synchronous server-side APIs backed by Rust
  • the fused-first Voided v2 artifact model
  • direct use of hashing, compression, encryption, shell, and artifact helpers
  • small higher-level utilities that are packaged on top of the native runtime

If you want direct Rust instead, use voided-core. If you want browser-side usage, use @voideddev/e2ee-client.

Installation

npm install @voideddev/enc-server

The package prefers prebuilt native binaries. If a prebuild is not available for the current platform, install falls back to a local source build. In that case, Rust must be installed on the machine.

Quick Start

Full-Flow Fused Artifact

This is the normal Voided v2 path in Node.js.

import {
  generateKey,
  protect,
  open,
  inspectArtifact,
} from "@voideddev/enc-server";

const key = generateKey();
const plaintext = Buffer.from("hello from enc-server");

const protectedResult = protect(plaintext, key, {
  preset: "balanced",
  compressionAlgorithm: "brotli",
  encryptionAlgorithm: "xchacha20-poly1305",
});

const info = inspectArtifact(protectedResult.artifact);
const restored = open(protectedResult.artifact, key);

console.log(info.preset);
console.log(restored.toString("utf8"));

Primitive Encryption

Use raw AEAD helpers when you want to manage the outer format yourself.

import {
  generateKey,
  encrypt,
  decrypt,
} from "@voideddev/enc-server";

const key = generateKey();
const plaintext = Buffer.from("primitive path");

const encrypted = encrypt(plaintext, key, "xchacha20-poly1305");
const restored = decrypt(encrypted, key);

console.log(restored.equals(plaintext));

Inspect And Repack

Use inspectArtifact when you want metadata without opening the payload, and repackArtifact when you want to move an artifact between presets.

import {
  generateKey,
  protect,
  repackArtifact,
  inspectArtifact,
  open,
} from "@voideddev/enc-server";

const key = generateKey();
const payload = Buffer.from("repack me".repeat(1024));

const initial = protect(payload, key, { preset: "balanced" });
const repacked = repackArtifact(initial.artifact, key, { preset: "concealed" });
const info = inspectArtifact(repacked.artifact);
const restored = open(repacked.artifact, key);

console.log(info.preset);
console.log(restored.equals(payload));

What Fused Means In Node.js

The fused shell is the outer artifact format. It wraps bytes that are already prepared and gives them a stable, inspectable, preset-driven envelope.

In the standard Voided v2 flow, the bytes entering the shell are:

  1. optionally compressed
  2. encrypted
  3. wrapped by the fused shell

That means:

  • encrypt gives you ciphertext and encryption metadata, but not the standard fused artifact
  • fuse wraps prepared bytes in the shell
  • protect runs the normal full flow and returns the standard fused artifact

Use fuse/unfuse when you already control the bytes that should live inside the shell.

Use protect/open when you want the normal Voided artifact contract.

Choosing The Right API Layer

The package exposes several layers. Use the smallest one that fits your job.

Use primitive helpers when you want:

  • direct hashing
  • direct AEAD encryption
  • direct compression
  • explicit control over your own outer format

Use fused shell helpers when you want:

  • fuse
  • unfuse
  • inspectFused

These are for cases where you already own the bytes being shelled.

Use full-flow helpers when you want:

  • protect
  • open
  • inspectArtifact
  • repackArtifact

These are the standard Voided v2 artifact APIs.

Primitive Crypto APIs

Primitive exports include:

  • generateKey
  • encrypt
  • decrypt
  • deriveKeyHkdf
  • deriveKeyPbkdf2
  • hash
  • hashWithSalt
  • compareHashes
  • generateHmac
  • verifyHmac
  • hashPbkdf2
  • verifyPbkdf2
  • fingerprint
  • safetyNumbers
  • compress
  • decompress
  • randomBytes
  • generateSalt
  • secureWipe
  • base64Encode
  • base64Decode
  • hexEncode
  • hexDecode

Important behavior notes:

  • all binary inputs and outputs use Node Buffer
  • the package is synchronous because the native module is loaded directly into Node.js
  • there is no TypeScript crypto fallback in this package

Fused Shell And Full-Flow APIs

Fused Shell

Use these when you want the shell layer directly:

  • fuse(data, key, preset?, chunkSize?)
  • unfuse(data, key)
  • inspectFused(data)

What each one does:

  • fuse
    • wrap already-prepared bytes in the fused shell
  • unfuse
    • strip the shell and return the inner bytes
  • inspectFused
    • inspect shell metadata without opening the inner payload

inspectFused gives you metadata such as:

  • preset
  • chunk size
  • chunk count
  • payload size
  • shell size

Full-Flow Artifacts

Use these when you want the standard Voided v2 artifact contract:

  • protect(data, key, options?)
  • open(artifact, key)
  • inspectArtifact(artifact)
  • repackArtifact(artifact, key, options?)

What each one does:

  • protect
    • compress, encrypt, and shell the input into the standard fused artifact
  • open
    • reverse protect and return the original plaintext bytes
  • inspectArtifact
    • inspect artifact metadata without opening it
  • repackArtifact
    • reopen and rewrite an artifact with new preset or pipeline settings

protect and repackArtifact accept:

  • preset
  • compressionAlgorithm
  • compressionLevel
  • encryptionAlgorithm
  • shellChunkSize

inspectArtifact reports:

  • preset
  • compression algorithm
  • encryption algorithm
  • original size
  • compressed size
  • encrypted size
  • protected size
  • shell chunk size
  • shell chunk count

If you do not have a strong reason otherwise, start with:

  • preset: "balanced"
  • compressionAlgorithm: "brotli"
  • encryptionAlgorithm: "xchacha20-poly1305"

Higher-Level Helper Exports

The package also includes higher-level helper modules built on top of the native runtime:

  • KeyManager
    • key lifecycle and storage helper
  • SigningService
    • higher-level signing orchestration using Node.js crypto
  • StatsTracker
    • metrics collection for tests and measurement
  • stream helpers
    • compression
    • decompression
    • encryption
    • decryption
    • chunking
    • line splitting
  • limits helpers
    • upload limit checks
    • stream threshold helpers
  • benchmarks
    • compression
    • encryption
    • hashing

The package also re-exports the low-level runtime as a namespace:

import { rust } from "@voideddev/enc-server";

That can be convenient when you want the raw native wrapper grouped under one namespace instead of pulling individual functions.

Fused Presets And Planning Metadata

The stable public fused presets are:

  • compact
  • balanced
  • concealed

Planning metadata is exported through:

  • VOIDED_V2_PRESET_PLAN
  • DEFAULT_VOIDED_V2_POLICY_PLAN
  • HIGH_SECURITY_VOIDED_V2_POLICY_PLAN
  • listVoidedV2Presets()
  • resolveVoidedV2Preset()

This metadata is useful when you want to align on preset ids, aliases, or default policy selection in higher-level tooling.

Native Runtime Behavior

Important runtime facts:

  • the package requires the native Node binding
  • native loading happens at runtime when the package is first used
  • the package prefers prebuilt binaries
  • local development builds live under native/
  • release prebuilds live under prebuilds/

For local development:

npm run build:native
npm run build

Development

Useful commands:

npm run build
npm run build:native
npm run test
npm run test:native
npm run test:integration
npm run test:all

The package-level integration tests are especially useful when you change the fused artifact model or its Node wrapper behavior.

Troubleshooting

The native module does not load

Usually this means one of these:

  • there is no prebuilt binary for the current platform
  • the local source build did not run successfully
  • the workspace has not been built yet in local development

Typical fixes:

  • install Rust if a source build is required
  • run npm run build:native
  • run npm run build

I want the standard artifact path, but I am using encrypt/decrypt

Use protect/open instead. encrypt/decrypt are primitive AEAD helpers, while protect/open are the fused-first full-flow artifact APIs.

I only want the shell layer

Use fuse/unfuse instead of protect/open.

v1 Boundary

This package is the fused-first current line. The old map-based APIs such as encryptWithMap and VoidedService have been removed from this branch and belong to deprecated v1 only.

That means:

  • no map-first public API in the current package
  • no map-first examples in this manual
  • no new current-line development targeting the old map shape

License

MIT