Library for polymorphic encryption and pseudonymization
Anonymous Credentials 2.0 implemention
Deterministic key hierarchy for Styrene mesh nodes — one root secret derives SSH, git signing, age, WireGuard, and agent delegation keys via HKDF-SHA256
Root-Scoped Provider Summaries using Golomb Coded Sets for P2P DHT
Native-client device trust decisions, attestation metadata, and trust-tier session policy.
TLS policy validation, SPKI certificate pinning, and cleartext traffic detection.
Security resilience helpers for environment checks, integrity signals, and timeout budgeting.
Lightweight identity-free attestation protocol
Deny-by-default authorization with RBAC, ABAC, tenant isolation, and web middleware.
Input validation, request limits, CORS, Fetch Metadata, and browser boundary protections.
Secure error handling with public-safe responses, incident IDs, and panic boundaries.
Authentication helpers for JWT, OIDC, MFA, API keys, sessions, and step-up policy.