fix

SSbit01 · SSbit01 · commit 44a5ff960dbf · 2025-12-07T21:32:59.000+01:00
diff --git a/README.md b/README.md
@@ -3,7 +3,7 @@
 > [!WARNING]  
 > This package uses [`Uint8Array.prototype.toBase64()`](https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/Uint8Array/toBase64) and [`Uint8Array.fromBase64()`](https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/Uint8Array/fromBase64), which, as of November 2025, are only supported by the latest versions of browsers, [Bun](https://bun.com/), [Deno 2.5 or later](https://deno.com/) and [Node.js 25 or later](https://nodejs.org/en). See [MDN](https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/Uint8Array/toBase64#browser_compatibility) for compatibility.
 
-A simple, secure, and fast symmetric encryption library that makes use of [AES-GCM](https://en.wikipedia.org/wiki/Galois/Counter_Mode) and modern platform features. It leverages the native [Web Crypto API](https://developer.mozilla.org/en-US/docs/Web/API/Web_Crypto_API), so it works both in browsers and JavaScript runtimes.
+A simple, secure, and fast symmetric encryption library that makes use of [AES-GCM](https://en.wikipedia.org/wiki/Galois/Counter_Mode) and modern platform features. It leverages the native [Web Crypto API](https://developer.mozilla.org/en-US/docs/Web/API/Web_Crypto_API), so it works both in browsers (in secure contexts) and JavaScript runtimes.
 
 ## Why AES-GCM?
 
@@ -45,7 +45,10 @@ import { getMessageEncryptionKey } from "./lib/crypto/key";
 
 export const cryptoMessage = new SingleCryptText(
   await getMessageEncryptionKey()
-)
+);
+
+// Recommended: Freeze the instance to prevent modification of the `urlSafe` property.
+Object.freeze(cryptoMessage);
 ```
 
 #### Usage
@@ -197,6 +200,9 @@ new SingleCryptText(
 
 - `urlSafe: boolean`  
   Indicates if the instance uses `base64url` encoding (`true`, default) or standard `base64` (`false`) for encrypted outputs.
+  
+  > [!NOTE]  
+  > It is recommended to freeze `SingleCryptText` instances with `Object.freeze()` to prevent its modification.
 
 
 #### Example
diff --git a/index.js b/index.js
@@ -199,7 +199,7 @@ export class SingleCryptText {
    * - The operation failed (e.g., AES-GCM plaintext longer than 2^39−256 bytes).
    */
   async encrypt(text) {
-    return encryptTextSymmetrically(await this.getKey(), text, this.urlSafe, this.#textEncoder)
+    return await encryptTextSymmetrically(await this.getKey(), text, this.urlSafe, this.#textEncoder)
   }
 
   /**
@@ -213,7 +213,7 @@ export class SingleCryptText {
    * - The operation failed.
    */
   async decrypt(encryptedText) {
-    return decryptTextSymmetrically(await this.getKey(), encryptedText, this.urlSafe, this.#textDecoder)
+    return await decryptTextSymmetrically(await this.getKey(), encryptedText, this.urlSafe, this.#textDecoder)
   }
 
 }
diff --git a/index.test.ts b/index.test.ts
@@ -45,7 +45,7 @@ describe("Functional", () => {
     const symCryptoKey2 = await createSymmetricKeyFromText(randomString())
     const randomValue = randomString()
     const encrypted = await encryptTextSymmetrically(symCryptoKey, randomValue)
-    expect(async() => await decryptTextSymmetrically(symCryptoKey2, encrypted)).toThrowError()
+    await expect(decryptTextSymmetrically(symCryptoKey2, encrypted)).rejects.toThrow()
   })
 
   test("Check if disabling `urlSafe` changes the encryption results.", async() => {
@@ -58,8 +58,8 @@ describe("Functional", () => {
     const decryptedUrlUnafe = await decryptTextSymmetrically(symCryptoKey, encryptedUrlUnsafe, false)
     expect(randomValue).toBe(decryptedUrlSafe)
     expect(randomValue).toBe(decryptedUrlUnafe)
-    expect(async() => await decryptTextSymmetrically(symCryptoKey, encryptedUrlSafe, false)).toThrowError()
-    expect(async() => await decryptTextSymmetrically(symCryptoKey, encryptedUrlUnsafe, true)).toThrowError()
+    await expect(decryptTextSymmetrically(symCryptoKey, encryptedUrlSafe, false)).rejects.toThrow()
+    await expect(decryptTextSymmetrically(symCryptoKey, encryptedUrlUnsafe, true)).rejects.toThrow()
   })
 
 })
@@ -69,11 +69,38 @@ describe("Object-oriented", () => {
 
   const singleCryptText1 = new SingleCryptText(randomString())
 
-  test("Decrypt a random value", async() => {
+  test("Encrypt and decrypt random values", async() => {
+    const randomValue = randomString()
+    const encrypted = await singleCryptText1.encrypt(randomValue)
+    const decrypted = await singleCryptText1.decrypt(encrypted)
+    expect(randomValue).toBe(decrypted)
+    let randomValue2
+    do {
+      randomValue2 = randomString()
+    } while (randomValue === randomValue2)
+    const encrypted2 = await singleCryptText1.encrypt(randomValue2)
+    expect(encrypted).not.toBe(encrypted2)
+    const decrypted2 = await singleCryptText1.decrypt(encrypted2)
+    expect(decrypted).not.toBe(decrypted2)
+    expect(randomValue2).toBe(decrypted2)
+  })
+
+  test("Check if `urlSafe` property works", async() => {
     const randomValue = randomString()
     const encrypted = await singleCryptText1.encrypt(randomValue)
+    singleCryptText1.urlSafe = !singleCryptText1.urlSafe
+    await expect(singleCryptText1.decrypt(encrypted)).rejects.toThrow()
+    singleCryptText1.urlSafe = !singleCryptText1.urlSafe
     const decrypted = await singleCryptText1.decrypt(encrypted)
     expect(randomValue).toBe(decrypted)
+    singleCryptText1.urlSafe = !singleCryptText1.urlSafe
+    const encrypted2 = await singleCryptText1.encrypt(randomValue)
+    expect(encrypted).not.toBe(encrypted2)
+    singleCryptText1.urlSafe = !singleCryptText1.urlSafe
+    await expect(singleCryptText1.decrypt(encrypted2)).rejects.toThrow()
+    singleCryptText1.urlSafe = !singleCryptText1.urlSafe
+    const decrypted2 = await singleCryptText1.decrypt(encrypted2)
+    expect(randomValue).toBe(decrypted2)
   })
 
 })
diff --git a/package.json b/package.json
@@ -1,6 +1,6 @@
 {
   "name": "singlecrypt-text",
-  "version": "3.0.2",
+  "version": "3.0.3",
   "author": "Stefan Samson <ss42701@outlook.com> (https://ssbit01.github.io/)",
   "repository": "github:SSbit01/singlecrypt-text",
   "main": "index.js",
@@ -44,6 +44,7 @@
   "private": false,
   "scripts": {
     "test": "bun test",
+    "test:random": "bun test --randomize",
     "build:types": "tsc",
     "build": "bun build ./index.js --minify --target browser --outdir ./dist --entry-naming [dir]/[name].min.[ext]",
     "build:cjs": "bun build ./index.js --minify --format cjs --outdir ./dist --entry-naming [dir]/[name].node.min.[ext]"

Original file line number	Diff line number	Diff line change
`@@ -199,7 +199,7 @@ export class SingleCryptText {`
`199`	`199`	`* - The operation failed (e.g., AES-GCM plaintext longer than 2^39−256 bytes).`
`200`	`200`	`*/`
`201`	`201`	`async encrypt(text) {`
`202`		`- return encryptTextSymmetrically(await this.getKey(), text, this.urlSafe, this.#textEncoder)`
	`202`	`+ return await encryptTextSymmetrically(await this.getKey(), text, this.urlSafe, this.#textEncoder)`
`203`	`203`	`}`
`204`	`204`
`205`	`205`	`/**`
`@@ -213,7 +213,7 @@ export class SingleCryptText {`
`213`	`213`	`* - The operation failed.`
`214`	`214`	`*/`
`215`	`215`	`async decrypt(encryptedText) {`
`216`		`- return decryptTextSymmetrically(await this.getKey(), encryptedText, this.urlSafe, this.#textDecoder)`
	`216`	`+ return await decryptTextSymmetrically(await this.getKey(), encryptedText, this.urlSafe, this.#textDecoder)`
`217`	`217`	`}`
`218`	`218`
`219`	`219`	`}`