npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

bot-proof-storage

v1.0.1

Published

Secure storage with behavioral bot detection and AES-256 encryption.

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Maintainers

femilckfemilck

Keywords

Readme

Bot-Proof Storage

High-security browser storage library with built-in behavioral bot detection and encrypted client-side persistence.

Overview

bot-proof-storage is a secure wrapper around localStorage and sessionStorage designed to protect sensitive client-side data from bots, scrapers, and automated scripts.

Unlike traditional storage libraries that only encrypt data, this library actively monitors behavioral patterns to identify suspicious activity and automatically sanitize storage when threats are detected.

Features

  • AES-256 encrypted storage
  • Behavioral bot detection
  • Automatic storage sanitization
  • LocalStorage & SessionStorage support
  • SSR-safe implementation
  • Lightweight and dependency minimal

Security System

The library combines encrypted storage with behavioral analysis to detect automation patterns in real time.

Detection Signals

  • Linearity Detection Identifies unnatural straight-line mouse movement patterns commonly generated by bots.

  • Velocity Analysis Detects inhuman interaction speeds and unrealistic event timing.

  • Cadence Monitoring Flags repetitive and perfectly timed interaction sequences.

Active Defense

When suspicious behavior is confirmed:

  • Sensitive storage can be automatically cleared
  • Access to stored data is blocked
  • Custom security callbacks can be triggered

This helps prevent token extraction and unauthorized automation attacks.

Tech Stack

  • JavaScript / TypeScript
  • CryptoJS (AES-256 Encryption)
  • Browser Storage APIs

Installation

npm install bot-proof-storage

Usage

import { BotProofStorage } from 'bot-proof-storage';

const storage = new BotProofStorage({
  secretKey: 'your-secret-key',
  storageType: 'local',
  sensitivity: 0.5,
  autoWipeOnBot: true,
  onBotDetected: () => {
    console.error('Bot activity detected');
  }
});

storage.setItem('session', {
  token: 'xyz123'
});

const data = storage.getItem('session');

Configuration

| Option | Description | | --------------- | ----------------------------------------- | | secretKey | Encryption key used for AES protection | | storageType | local or session storage | | sensitivity | Detection strictness from 0.1 to 1.0 | | autoWipeOnBot | Automatically clears storage on detection | | onBotDetected | Callback triggered on suspicious activity |

Storage Flow

User Interaction
        ↓
Behavior Analysis
        ↓
Bot Detection Engine
        ↓
Encrypted Storage Access
        ↓
Auto Defense (Optional)

Use Cases

  • Authentication token protection
  • Secure session persistence
  • Anti-bot web applications
  • High-security client-side storage
  • Fraud prevention systems

SSR Support

The library includes built-in safeguards for environments such as:

  • Next.js
  • Server-side rendering applications
  • Hybrid rendering frameworks

Purpose

bot-proof-storage is designed for applications requiring stronger client-side protection than traditional encrypted storage solutions.

It provides:

  • Secure encrypted persistence
  • Behavioral threat detection
  • Automated response mechanisms
  • Lightweight integration into modern web apps

License

This project is licensed under the Apache-2.0 License.