kbpgp | OpenPGP Implementation in IcedCoffeeScript | Email library

by keybase JavaScript Version: 2.1.15 License: BSD-3-Clause

X-Ray Key Features Code Snippets Community Discussions(1)Vulnerabilities Install Support

kandi X-RAY | kbpgp Summary

kbpgp is a JavaScript library typically used in Messaging, Email applications. kbpgp has no bugs, it has no vulnerabilities, it has a Permissive License and it has low support. You can install using 'npm i kbpgp' or download it from GitHub, npm.

OpenPGP (RFC4880) Implementation in IcedCoffeeScript

Support

Quality

Security

License

Reuse

Support

kbpgp has a low active ecosystem.

It has 528 star(s) with 79 fork(s). There are 39 watchers for this library.

It had no major release in the last 12 months.

There are 73 open issues and 81 have been closed. On average issues are closed in 156 days. There are 8 open pull requests and 0 closed requests.

It has a neutral sentiment in the developer community.

The latest version of kbpgp is 2.1.15

Quality

kbpgp has 0 bugs and 0 code smells.

Security

kbpgp has no vulnerabilities reported, and its dependent libraries have no vulnerabilities reported.

kbpgp code analysis shows 0 unresolved vulnerabilities.

There are 0 security hotspots that need review.

License

kbpgp is licensed under the BSD-3-Clause License. This license is Permissive.

Permissive licenses have the least restrictions, and you can use them in most projects.

Reuse

kbpgp releases are not available. You will need to build from source code and install.

Deployable package is available in npm.

kbpgp saves you 34 person hours of effort in developing the same functionality from scratch.

It has 91 lines of code, 1 functions and 79 files.

It has low code complexity. Code complexity directly impacts maintainability of the code.

Top functions reviewed by kandi - BETA

kandi has reviewed kbpgp and discovered the below as its top functions. This is intended to give you an instant insight into kbpgp implemented functionality, and help decide if they suit your requirements.

Casts COP_Cipher .
Define Block loop
Translate an entire block into a string .
fill the given window with random arguments .
read the next file in order
Flattens a string into an AST
Read the directory .
Determines the longest match of a string .
Initialize static cache for static code entries
Calculate the MD5 hash .

Get all kandi verified functions for this library.

kbpgp Key Features

No Key Features are available at this moment for kbpgp.

kbpgp Examples and Code Snippets

No Code Snippets are available at this moment for kbpgp.

Community Discussions

Trending Discussions on kbpgp

Create a PGP Compatible Signature in NodeJS using the Crypto Library

QUESTION

Create a PGP Compatible Signature in NodeJS using the Crypto Library

Asked 2017-Jun-30 at 18:26

In looking at the Crypto Library I see it has the capability to sign data.

Does anyone know if a PGP compatible signature is as simple as ASCII armoring the output of the Crypto Library's sign command?

I have an application that needs to sign and only sign data using PGP. I've looked at the OpenGPGJS project; but it blows up when I Webpack my application.

I've been trying to use kbgpg, but their documentation isn't that great, and when I follow their default example on signing data that signature isn't even recognized as a signature when I attempt to use Kleopatra to validate everything was correct. This is even if I change the "GPG MESSAGE" block to instead be a "PGP SIGNATURE" block.

Since I don't need the encryption, just signature, I was thinking that using the Crypto library directly may be the most simple solution here, but I'm having a difficult time finding documentation to validate it can be done easily.

...

ANSWER

Answered 2017-Jun-30 at 18:22

While OpenPGP uses a special mode of operation for encryption (the OpenPGP CFB mode), there are no special algorithms used for signing documents. RFC 4880, OpenPGP defines how OpenPGP messages have to be composed -- in theory, that's all you need to know to export messages in the OpenPGP format. You might even be able to skip a lot of special cases, especially if you also can control what keys are used (and their technical specifics) to sign the information.

But you will have to put together own code to write the OpenPGP message format, which is pretty much what OpenPGPJS and others are doing already. But doing proper cryptography is very complicated, and there are many ways to do things wrong. Don't write your own crypto code, especially not as a side project.

Finally, looking at the code I'm rather sure kbpgp does not export BEGIN GPG MESSAGE headers. It might well print BEGIN PGP MESSAGE headers, and this is the correct header when signatures are combined with the signed content. Changing this to BEGIN PGP SIGNATURE will result in an invalid header for the message's contents.

Source https://stackoverflow.com/questions/44851355

Community Discussions, Code Snippets contain sources that include Stack Exchange Network

Vulnerabilities

No vulnerabilities reported

Install kbpgp

You can install using 'npm i kbpgp' or download it from GitHub, npm.

Support

If you are aware of a security bug (or have a proposal/implemention of a "zero day" attack), notifying us privately is in the interest of all users. We can then discuss it post-mortem. To reach us privately, please get our public keys here:. You can import our keys to GPG - and verify our Keybase.io admin status - with keybase track max and keybase track chris.

Find more information at: