npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

encloom

v2.0.2

Published

TypeScript/JavaScript cryptographic toolkit: SHA-2 and SHA-3 (incl. Keccak), HMAC, AES-CBC, AES-GCM, PBKDF2, secure random, and secp256k1 (ECDSA, ECDH, ECIES). Subpath exports with tree-shaking; APIs use Uint8Array.

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

alexrodromalexrodrom

Keywords

encloomcryptoeccsecp256k1ecdhecdsaeciesaesaes-gcmhmacpbkdf2sha256sha3tree-shaking

Readme

npm version npm downloads minified minified + gzip tree shaking install size License: MIT GitHub stars CI Coverage Status npm audit TypeScript Node

TypeScript/JavaScript cryptographic toolkit: SHA-2 and SHA-3 (incl. Keccak), HMAC, AES-CBC, AES-GCM, PBKDF2, secure random, and secp256k1 (ECDSA, ECDH, ECIES). Subpath exports with tree-shaking. Binary I/O uses Uint8Array (not Node Buffer, including helper names that say *Buffer for enc-utils–style compatibility).

npm install encloom

Release notes and breaking changes are kept in CHANGELOG.md. Before upgrading, read the Breaking changes section for the target version.

Subpath entry points: encloom/<module>. The package root encloom re-exports the same symbols. Parameters and results use Uint8Array. ECDSA sign / verify expect a message digest (e.g. SHA-256 output), not raw plaintext.

Symbols exported per import path (types compile-time only). First column → Module documentation.

| Import path | Exports | |-------------|---------| | encloom | Full public API (aggregate of subpaths). | | encloom/random | randomBytes | | encloom/sha2 | sha256, sha256Sync, sha256Utf8Hex, sha256Utf8HexSync, sha512, sha512Sync, ripemd160, ripemd160Sync | | encloom/sha3 | sha3, keccak256 | | encloom/hmac | hmacSha256Sign, hmacSha256SignSync, hmacSha256Verify, hmacSha256VerifySync, hmacSha512Sign, hmacSha512SignSync, hmacSha512Verify, hmacSha512VerifySync, hmacSha256SignUtf8KeyBase64, hmacSha256SignUtf8KeyBase64Sync, hmacSha256SignJsonUtf8KeyBase64, hmacSha256SignJsonUtf8KeyBase64Sync | | encloom/aes | aesCbcEncrypt, aesCbcDecrypt, aesCbcEncryptSync, aesCbcDecryptSync | | encloom/aes-gcm | aesGcmEncrypt, aesGcmEncryptSync, aesGcmDecrypt, aesGcmDecryptSync, encryptObjectAes128GcmJsonHex, decryptObjectAes128GcmJsonHex, encryptJsonAes256Gcm, encryptJsonAes256GcmSync, decryptJsonAes256Gcm, decryptJsonAes256GcmSync | | encloom/ecdsa | generatePrivate, generateKeyPair, getPublic, getPublicCompressed, compress, decompress, signatureExport, sign, recover, verify | | encloom/ecdh | derive | | encloom/ecies | encrypt, decrypt, encryptSync, decryptSync, serialize, deserialize | | encloom/pbkdf2 | pbkdf2 | | encloom/constants | Constant identifiers: full list | | encloom/helpers | Re-exports encoding, hex-to-bytes, byte conversions (enc-utils–style, list), validators, util, types. | | encloom/helpers/encoding | utf8ToBuffer, bufferToUtf8, concatBuffers, bufferToHex, hexToBuffer, sanitizeHex, removeHexLeadingZeros, hexToNumber, bufferToBase64, base64ToBuffer, bufferToBase64Url, base64UrlToBuffer, aes128StringKeyMaterial | | encloom/helpers/hex-to-bytes | hexToBytes (hex digit string → number[]; odd length implies a leading zero nibble) | | encloom/helpers/byte-conversions | Enc-utils–style string/byte helpers: full list and symbol table (entire byte-conversions source is public) | | encloom/helpers/validators | assert, isScalar, isValidPrivateKey, equalConstTime, isValidKeyLength, checkPrivateKey, checkPublicKey, checkMessage | | encloom/helpers/util | isCompressed, isDecompressed, isPrefixed, sanitizePublicKey, exportRecoveryParam, importRecoveryParam, splitSignature, joinSignature, isValidDERSignature, sanitizeRSVSignature | | encloom/helpers/types | Types: Encrypted, PreEncryptOpts, KeyPair, Signature, SignResult, Pbkdf2Digest, Pbkdf2Options, Pbkdf2Result, AesGcmJsonWire |

HEX_ENC, UTF8_ENC, BINARY_ENC, ENCRYPT_OP, DECRYPT_OP, SIGN_OP, VERIFY_OP, LENGTH_0, LENGTH_1, LENGTH_12, LENGTH_16, LENGTH_32, LENGTH_64, LENGTH_128, LENGTH_256, LENGTH_512, LENGTH_1024, AES_LENGTH, HMAC_LENGTH, AES_BROWSER_ALGO, HMAC_BROWSER_ALGO, HMAC_BROWSER, SHA256_BROWSER_ALGO, SHA512_BROWSER_ALGO, AES_NODE_ALGO, HMAC_NODE_ALGO, SHA256_NODE_ALGO, SHA512_NODE_ALGO, RIPEMD160_NODE_ALGO, PBKDF2_DIGEST_SHA256, PBKDF2_DIGEST_SHA512, PREFIX_LENGTH, KEY_LENGTH, IV_LENGTH, AES_GCM_NONCE_LENGTH, AES_GCM_ENVELOPE_NONCE_MAX_LENGTH, AES_GCM_TAG_LENGTH, MAC_LENGTH, DECOMPRESSED_LENGTH, PREFIXED_KEY_LENGTH, PREFIXED_DECOMPRESSED_LENGTH, ECIES_SERIALIZED_MIN_LENGTH, MAX_KEY_LENGTH, MAX_MSG_LENGTH, PBKDF2_DEFAULT_ITERATIONS, EMPTY_BUFFER, EC_GROUP_ORDER, ZERO32, ERROR_BAD_MAC, ERROR_BAD_SIGNATURE, ERROR_BAD_PRIVATE_KEY, ERROR_BAD_PUBLIC_KEY, ERROR_BAD_EPHEM_PRIVATE_KEY, ERROR_ECIES_SERIALIZED_LENGTH, ERROR_AES_IV_LENGTH, ERROR_AES_KEY_LENGTH, ERROR_AES_GCM_KEY_LENGTH, ERROR_AES_GCM_NONCE_LENGTH, ERROR_AES_GCM_CIPHERTEXT_LENGTH, ERROR_EMPTY_MESSAGE, ERROR_MESSAGE_TOO_LONG

ESM

import { sign, encrypt } from "encloom";
import { sha256Sync } from "encloom/sha2";
import { hexToBuffer } from "encloom/helpers/encoding";
import { arrayToHex } from "encloom/helpers/byte-conversions";

CommonJS

const { sign } = require("encloom");
const { decrypt } = require("encloom/ecies");

Allowed paths match the “Import path” column in Quick reference.

| Command | Purpose | |---------|---------| | npm run lint | ESLint | | npm test | Unit tests (Vitest) | | npm run test:coverage | Tests + V8 coverage (coverage/lcov.info; used in CI for Coveralls) | | npm run build | Bundles dist/ (ESM + CJS) and declaration files |

Maintainer-only (not part of the published package API): see package.json for local scripts; scripts/build.mjs is the bundler for dist/ and is not part of the published install.

Description. Cryptographically secure random octets.

| Function | Input | Output | |----------|-------|--------| | randomBytes | length: integer 1…1024 | Uint8Array |

Example

import { randomBytes } from "encloom/random";

const nonce = randomBytes(32);

Description. SHA-256, SHA-512, and RIPEMD-160 digests. Each algorithm has async and sync variants.

| Function | Input | Output | |----------|-------|--------| | sha256 / sha256Sync | msg: Uint8Array | Uint8Array (32 octets) | | sha256Utf8Hex / sha256Utf8HexSync | str: string (UTF-8) | Lowercase hex digest (64 characters) | | sha512 / sha512Sync | msg: Uint8Array | Uint8Array (64 octets) | | ripemd160 / ripemd160Sync | msg: Uint8Array | Uint8Array (20 octets) |

Example

import { sha256Sync, sha256Utf8HexSync } from "encloom/sha2";
import { utf8ToBuffer } from "encloom/helpers/encoding";

const digest = sha256Sync(utf8ToBuffer("hello"));
const hex = sha256Utf8HexSync("hello"); // 64-char lowercase hex, UTF-8 input

Example (async UTF-8 hex)

import { sha256Utf8Hex } from "encloom/sha2";

const hex = await sha256Utf8Hex("hello"); // same string as sync variant

Description. SHA3-256 (FIPS) and Keccak-256 digests.

| Function | Input | Output | |----------|-------|--------| | sha3 | msg: Uint8Array | Uint8Array | | keccak256 | msg: Uint8Array | Uint8Array |

Example

import { keccak256 } from "encloom/sha3";

const h = keccak256(new Uint8Array([1, 2, 3]));

Description. HMAC-SHA-256 and HMAC-SHA-512. …Verify / …VerifySync return boolean.

| Function | Input | Output | |----------|-------|--------| | hmacSha256Sign / …Sync | key, msg: Uint8Array | Uint8Array | | hmacSha256Verify / …Sync | key, msg, sig | boolean | | hmacSha512Sign / …Sync | key, msg | Uint8Array | | hmacSha512Verify / …Sync | key, msg, sig | boolean | | hmacSha256SignUtf8KeyBase64 / …Sync | keyUtf8: string, msg: Uint8Array | Base64 MAC | | hmacSha256SignJsonUtf8KeyBase64 / …Sync | keyUtf8: string, data: unknown | Base64 MAC over JSON.stringify(data) |

Example

import { hmacSha256SignSync, hmacSha256VerifySync } from "encloom/hmac";

const tag = hmacSha256SignSync(key, message);
const ok = hmacSha256VerifySync(key, message, tag);

Example (UTF-8 string key + JSON body, Base64 tag)

import { hmacSha256SignJsonUtf8KeyBase64Sync } from "encloom/hmac";

const secret = "api-shared-secret";
const body = { action: "ping", id: 1 };
const mac = hmacSha256SignJsonUtf8KeyBase64Sync(secret, body);

Example (async Base64 MAC, UTF-8 string key + message bytes)

import { hmacSha256SignUtf8KeyBase64 } from "encloom/hmac";
import { utf8ToBuffer } from "encloom/helpers/encoding";

const tag = await hmacSha256SignUtf8KeyBase64("secret", utf8ToBuffer("payload"));

Example (verify JSON MAC: recompute bytes + hmacSha256VerifySync)

import {
  hmacSha256SignJsonUtf8KeyBase64Sync,
  hmacSha256VerifySync,
} from "encloom/hmac";
import { utf8ToBuffer, base64ToBuffer } from "encloom/helpers/encoding";

const secret = "api-shared-secret";
const body = { action: "ping", id: 1 };
const macB64 = hmacSha256SignJsonUtf8KeyBase64Sync(secret, body);
const msg = utf8ToBuffer(JSON.stringify(body));
const ok = hmacSha256VerifySync(utf8ToBuffer(secret), msg, base64ToBuffer(macB64));

Description. AES-256-CBC encryption and decryption with PKCS#7 padding. Key 32 octets, initialization vector 16 octets.

| Function | Input | Output | |----------|-------|--------| | aesCbcEncrypt / …Sync | iv, key, data | Ciphertext | | aesCbcDecrypt / …Sync | iv, key, data | Plaintext |

Example

import { aesCbcEncrypt, aesCbcDecrypt } from "encloom/aes";
import { randomBytes } from "encloom/random";

const key = randomBytes(32);
const iv = randomBytes(16);
const ct = await aesCbcEncrypt(iv, key, new Uint8Array([1, 2, 3]));
const pt = await aesCbcDecrypt(iv, key, ct);

Description. AES-GCM (128-bit tag) via @noble/ciphers, Web Crypto–compatible layout (ciphertext || tag). Low-level helpers take raw keys (16 / 24 / 32 octets) and nonce (≥ 8 octets; 12 recommended, see AES_GCM_NONCE_LENGTH). High-level helpers cover JSON + passphrase (AES-128, hex wire) and JSON + random AES-256 key (Base64 / Base64url envelope). For that JSON envelope, the default random nonce length is AES_GCM_NONCE_LENGTH; you may pass a larger nonceByteLength (up to AES_GCM_ENVELOPE_NONCE_MAX_LENGTH) as the optional second argument to encryptJsonAes256GcmSync / encryptJsonAes256Gcm when you need to match an existing wire with a longer iv.

| Function | Summary | |----------|---------| | aesGcmEncrypt / aesGcmEncryptSync | nonce, key, plaintext, optional aad → ciphertext with tag | | aesGcmDecrypt / aesGcmDecryptSync | nonce, key, ciphertext (+ optional aad) → plaintext | | encryptObjectAes128GcmJsonHex / decryptObjectAes128GcmJsonHex | JSON + passphrase → lowercase hex (12-byte nonce, then ciphertext and 128-bit tag); decrypt returns unknown | | encryptJsonAes256Gcm / encryptJsonAes256GcmSync | JSON + random key → AesGcmJsonWire; optional nonceByteLength (default AES_GCM_NONCE_LENGTH, max AES_GCM_ENVELOPE_NONCE_MAX_LENGTH) | | decryptJsonAes256Gcm / decryptJsonAes256GcmSync | AesGcmJsonWire → parsed JSON (unknown) |

Examples

Raw bytes:

import { aesGcmEncryptSync, aesGcmDecryptSync } from "encloom/aes-gcm";
import { randomBytes } from "encloom/random";

const key = randomBytes(32);
const nonce = randomBytes(12);
const ct = aesGcmEncryptSync(nonce, key, new Uint8Array([1, 2, 3]));
const pt = aesGcmDecryptSync(nonce, key, ct);

UTF-8 text (encode / decode with helpers/encoding):

import { aesGcmEncryptSync, aesGcmDecryptSync } from "encloom/aes-gcm";
import { utf8ToBuffer, bufferToUtf8 } from "encloom/helpers/encoding";
import { randomBytes } from "encloom/random";

const key = randomBytes(32);
const nonce = randomBytes(12);
const msg = "Hola desde encloom";
const ct = aesGcmEncryptSync(nonce, key, utf8ToBuffer(msg));
const again = bufferToUtf8(aesGcmDecryptSync(nonce, key, ct));

JSON + random AES-256 key (transportable strings; decrypt returns unknown — narrow at call site):

import {
  encryptJsonAes256GcmSync,
  decryptJsonAes256GcmSync,
} from "encloom/aes-gcm";

const wire = encryptJsonAes256GcmSync({ user: "ana", n: 42 });
const out = decryptJsonAes256GcmSync(wire) as { user: string; n: number };

// Same wire shape; optional second argument = random nonce length in octets (e.g. 64)
const wireLongNonce = encryptJsonAes256GcmSync({ user: "ana", n: 42 }, 64);
decryptJsonAes256GcmSync(wireLongNonce) as { user: string; n: number };

JSON + passphrase, AES-128, hex wire (passphrase must satisfy aes128StringKeyMaterial, typically ≤16 ASCII chars):

import {
  encryptObjectAes128GcmJsonHex,
  decryptObjectAes128GcmJsonHex,
} from "encloom/aes-gcm";

const passphrase = "0123456789abcdef"; // 16 chars → 16 UTF-8 bytes
const hex = encryptObjectAes128GcmJsonHex({ ok: true }, passphrase);
const data = decryptObjectAes128GcmJsonHex(hex, passphrase) as { ok: boolean };

AES-128 / AES-192 GCM low-level (16- or 24-octet keys; 32-octet keys as in the first example):

import { aesGcmEncryptSync, aesGcmDecryptSync } from "encloom/aes-gcm";
import { randomBytes } from "encloom/random";

const nonce = randomBytes(12);
const key128 = randomBytes(16);
const ct128 = aesGcmEncryptSync(nonce, key128, new Uint8Array([9]));
aesGcmDecryptSync(nonce, key128, ct128);

const key192 = randomBytes(24);
const ct192 = aesGcmEncryptSync(nonce, key192, new Uint8Array([10]));
aesGcmDecryptSync(nonce, key192, ct192);

Optional AAD (must match on decrypt):

import { aesGcmEncryptSync, aesGcmDecryptSync } from "encloom/aes-gcm";
import { utf8ToBuffer } from "encloom/helpers/encoding";
import { randomBytes } from "encloom/random";

const key = randomBytes(32);
const nonce = randomBytes(12);
const aad = utf8ToBuffer("v1");
const pt = utf8ToBuffer("authenticated payload");
const ct = aesGcmEncryptSync(nonce, key, pt, aad);
const out = aesGcmDecryptSync(nonce, key, ct, aad);

Async low-level (Promise wrappers):

import { aesGcmEncrypt, aesGcmDecrypt } from "encloom/aes-gcm";
import { randomBytes } from "encloom/random";

const key = randomBytes(32);
const nonce = randomBytes(12);
const ct = await aesGcmEncrypt(nonce, key, new Uint8Array([1, 2]));
const pt = await aesGcmDecrypt(nonce, key, ct);

Async AES-256-GCM + AAD (32-octet key; same aad on encrypt and decrypt):

import { aesGcmEncrypt, aesGcmDecrypt } from "encloom/aes-gcm";
import { utf8ToBuffer } from "encloom/helpers/encoding";
import { randomBytes } from "encloom/random";

const key = randomBytes(32);
const nonce = randomBytes(12);
const aad = utf8ToBuffer("v1");
const pt = utf8ToBuffer("secret body");
const ct = await aesGcmEncrypt(nonce, key, pt, aad);
const out = await aesGcmDecrypt(nonce, key, ct, aad);

Async JSON envelope (encryptJsonAes256Gcm / decryptJsonAes256Gcm):

import { encryptJsonAes256Gcm, decryptJsonAes256Gcm } from "encloom/aes-gcm";

const wire = await encryptJsonAes256Gcm({ x: 1 });
const data = (await decryptJsonAes256Gcm(wire)) as { x: number };

const wireLong = await encryptJsonAes256Gcm({ x: 1 }, 64);
await decryptJsonAes256Gcm(wireLong);

Description. ECDSA key and signature operations on secp256k1. Public keys use SEC1 encoding (compressed or uncompressed).

| Function | Summary | |----------|---------| | generatePrivate | Random private key (32 octets). | | generateKeyPair | { privateKey, publicKey } (uncompressed public key). | | getPublic / getPublicCompressed | Public key derived from private key. | | compress / decompress | SEC1 format conversion. | | sign | Sign digest; optional third argument rsvSig (default false: 64 octets; true: 65 octets). | | verify | Valid signature: void; invalid: throws. | | recover | Recover public key from 65-octet signature and digest. | | signatureExport | Convert compact or recovered signature to DER encoding. |

Example

import { generateKeyPair, sign, verify } from "encloom/ecdsa";
import { sha256Sync } from "encloom/sha2";
import { utf8ToBuffer } from "encloom/helpers/encoding";

const pair = generateKeyPair();
const digest = sha256Sync(utf8ToBuffer("hello"));
const sig = sign(pair.privateKey, digest);

verify(pair.publicKey, digest, sig);

Description. ECDH on secp256k1 (32-octet shared secret).

| Function | Input | Output | |----------|-------|--------| | derive | privateKeyA, publicKeyB | 32-octet Uint8Array |

Example

import { generateKeyPair } from "encloom/ecdsa";
import { derive } from "encloom/ecdh";

const a = generateKeyPair();
const b = generateKeyPair();
const shared = derive(a.privateKey, b.publicKey);

Description. ECIES on secp256k1: encrypt to recipient public key; decrypt with private key. Wire format: serialize / deserialize. encrypt / encryptSync accept optional Partial<PreEncryptOpts> (iv, ephemPrivateKey, etc.).

| Function | Summary | |----------|---------| | encrypt / decrypt | Async. | | encryptSync / decryptSync | Sync (Uint8Array, not Promise). | | serialize / deserialize | Object ↔ bytes. |

Example

import { generateKeyPair } from "encloom/ecdsa";
import { encrypt, decrypt, serialize, deserialize } from "encloom/ecies";
import { utf8ToBuffer, bufferToUtf8 } from "encloom/helpers/encoding";

const alice = generateKeyPair();
const msg = utf8ToBuffer("secret");

const enc = await encrypt(alice.publicKey, msg);
const wire = serialize(enc);

const out = await decrypt(alice.privateKey, deserialize(wire));
bufferToUtf8(out);

Description. PBKDF2 (HMAC-SHA-256 or HMAC-SHA-512). Output: 32-octet key, salt, iterations, digest. Random 16-octet salt and PBKDF2_DEFAULT_ITERATIONS unless overridden in Pbkdf2Options.

| Function | Input | Output | |----------|-------|--------| | pbkdf2 | password, optional Pbkdf2Options | Promise<Pbkdf2Result> |

Example

import { pbkdf2 } from "encloom/pbkdf2";
import { utf8ToBuffer } from "encloom/helpers/encoding";

const first = await pbkdf2(utf8ToBuffer("password"));
const again = await pbkdf2(utf8ToBuffer("password"), {
  salt: first.salt,
  iterations: first.iterations,
  digest: first.digest,
});

Description. Lengths, algorithm names, errors, curve data. No functions. List.

Example

import { KEY_LENGTH, MAX_MSG_LENGTH } from "encloom/constants";

Description. Re-exports encoding, hex-to-bytes, byte conversions (helpers/byte-conversions), validators, util, and types. Subpaths limit the import surface; you can import byte helpers from encloom, encloom/helpers, or encloom/helpers/byte-conversions.

| Function | Summary | |----------|---------| | utf8ToBuffer / bufferToUtf8 | UTF-8 encode and decode. | | concatBuffers | Concatenate Uint8Array values. | | bufferToHex | Lowercase hexadecimal string. | | hexToBuffer | Parse hexadecimal (optional 0x prefix). | | sanitizeHex | Strip 0x prefix. | | removeHexLeadingZeros | Normalize hexadecimal string. | | hexToNumber | Hexadecimal string to integer. | | bufferToBase64 / base64ToBuffer | RFC 4648 Base64 | | bufferToBase64Url / base64UrlToBuffer | Base64url (unpadded encode; decode accepts optional padding) | | aes128StringKeyMaterial | Passphrase → 16 UTF-8 bytes for AES-128 (throws if not exactly 16) |

Example

import { hexToBuffer, bufferToHex } from "encloom/helpers/encoding";

bufferToHex(hexToBuffer("0xdead"));

| Function | Summary | |----------|---------| | hexToBytes | Parse a contiguous hex string into an array of byte values (0255); if the string has odd length, a leading 0 nibble is implied (unlike hexToBuffer, which rejects odd lengths). |

Example

import { hexToBytes } from "encloom/helpers/hex-to-bytes";

new Uint8Array(hexToBytes("0a")); // [10]

Description. Helpers aligned with the enc-utils API surface (familiar string and byte names in many web3 and browser toolchains). All functions in the source file are public: you can use low-level string/binary layout (calcByteLength, splitBytes, …) or the high-level shorthands (binaryToArray, numberToArray, …). All binary results use Uint8Array where applicable (arrayToBuffer, numberToBuffer, etc.).

| Symbol | Role | |--------|------| | calcByteLength | Rounds a length (e.g. of a bit string) up to the next multiple of byteSize (default 8) | | padString | Pads a string on the left or right (building block for padLeft / padRight) | | padLeft, padRight | String padding to a target length (no truncation) | | sanitizeBytes | Left-pads a 0/1 string so its length is a multiple of 8 (or of byteSize); used by numberToBinary | | splitBytes | Splits a sanitized 0/1 string into 8-bit (or byteSize) chunks; base for binaryToArray | | binaryToArray | 0/1 string → Uint8Array (enc-utils layout) | | numberToBinary | num >>> 0 as minimal base-2, then sanitizeBytes to full byte groups; used by numberToArray | | isBinaryString, isHexString | isBinaryString tests 0/1 and length ≡ 0 (mod 8); isHexString requires a lowercase 0x prefix (enc-utils rule) | | isBuffer, isTypedArray, isArrayBuffer | Type / value checks (see JSDoc) | | getType, getEncoding, EncLikeType | Value classification and string “encoding” guess | | addHexPrefix, removeHexPrefix | Hex prefix helpers | | bufferToArray, bufferToNumber | Uint8Array copy and big-endian unsigned integer | | arrayToBuffer, arrayToHex, arrayToUtf8, arrayToNumber | Array / hex / UTF-8 / number conversions | | hexToArray, hexToUtf8 | Hex decoding (see hexToBuffer for validation rules) | | utf8ToArray, utf8ToHex, utf8ToNumber | UTF-8 string conversions | | numberToArray, numberToBuffer, numberToHex, numberToUtf8 | uint32-style byte layout and string forms (see JSDoc) | | trimLeft, trimRight | Trim byte sequences to a target length |

Example

import {
  arrayToHex,
  binaryToArray,
  getEncoding,
  numberToBinary,
  utf8ToArray,
} from "encloom/helpers/byte-conversions";

arrayToHex(utf8ToArray("hi"), true); // "0x6869"
getEncoding("0x00ff"); // "hex"
getEncoding("00001111"); // "binary" (multiples of eight `0`/`1`)
binaryToArray("00001111"); // Uint8Array(1) => [0x0f]
numberToBinary(256); // padded 0/1 string used inside numberToArray

| Function | Summary | |----------|---------| | assert | Boolean check with error message. | | isScalar | Whether the value is a 32-octet Uint8Array. | | isValidPrivateKey | Whether the private key is in range for the curve. | | equalConstTime | Constant-time equality of octet sequences. | | isValidKeyLength | Validates length for random byte generation. | | checkPrivateKey, checkPublicKey, checkMessage | Strict validation; throw if checks fail. |

Example

import { isValidPrivateKey } from "encloom/helpers/validators";

isValidPrivateKey(secretKeyBytes);

| Function | Summary | |----------|---------| | isCompressed, isDecompressed, isPrefixed | Public key format classification. | | sanitizePublicKey | Add SEC1 prefix when applicable. | | exportRecoveryParam, importRecoveryParam | Map recovery index for signatures. | | splitSignature, joinSignature | Split and join r, s, v components. | | isValidDERSignature | Heuristic DER signature detection. | | sanitizeRSVSignature | Normalize 65-octet signature; returns SignResult. |

Example

import { splitSignature } from "encloom/helpers/util";

const { r, s, v } = splitSignature(sig65Bytes);

Description. Type-only module: Encrypted, PreEncryptOpts, KeyPair, Signature, SignResult, Pbkdf2Digest, Pbkdf2Options, Pbkdf2Result, AesGcmJsonWire.

Example

import type { KeyPair, Encrypted, Pbkdf2Result, AesGcmJsonWire } from "encloom/helpers/types";