chore: bump version to 9.0.1 and update documentation

This commit bumps the version from 9.0.0 to 9.0.1 across the plugin and all example applications. It also includes significant documentation updates and a dependency maintenance.

### Documentation
- **Biometric Decryption**: Added a new section to `README.md` describing the decryption lifecycle, accompanied by a process diagram.
- **Windows Integration**: Clarified platform-specific details for Windows Hello, including the use of `KeyCredentialManager`, TPM backing, and the RSA-2048 constraint.
- **Metadata**: Updated `pubspec.yaml` description to explicitly mention support for Android, iOS, macOS, and Windows.

### Maintenance
- **Android**: Updated `androidx.biometric:biometric` dependency from `1.4.0-alpha04` to `1.4.0-alpha05`.
- **Version Bump**: Updated version strings in `pubspec.yaml`, `pubspec.lock` files, podspecs, and the example app's UI.
- **Assets**: Added `usecase-2.jpeg` to support new documentation.

Author: chamodanethra

CHANGELOG.md

@@ -1,3 +1,10 @@
+## [9.0.1] - 2025-12-21
+
+* **Feature:** Added "Biometric Decryption" section to `README.md` with a detailed lifecycle diagram (`usecase-2.png`) and process description.
+* **Improved:** Enhanced Windows platform documentation to clarify `KeyCredentialManager` usage, TPM backing, RSA-2048 constraints, and lack of decryption support.
+* **Metadata:** Updated `pubspec.yaml` description to explicitly include supported platforms and Windows Hello.
+* **Maintenance:** Updated Android native dependency.
+
 ## [9.0.0] - 2025-12-18
 
 * **Breaking**: Method signature changes:

README.md

@@ -164,7 +164,7 @@ To get started with Biometric Signature, follow these steps:
 
 ```yaml
 dependencies:
-  biometric_signature: ^9.0.0
+  biometric_signature: ^9.0.1
 ```
 
 |             | Android | iOS   | macOS  | Windows |
@@ -240,13 +240,15 @@ platform :osx, '10.15'
 
 ### Windows Integration
 
-This plugin uses **Windows Hello** for biometric authentication on Windows 10 and later.
+### Windows Integration
+
+This plugin uses **Windows Hello** (`Windows.Security.Credentials.KeyCredentialManager`) for biometric authentication on Windows 10 and later. Keys are typically backed by the device's **TPM (Trusted Platform Module)** for hardware-grade security.
 
 **Platform Limitations:**
-- Windows only supports **RSA keys** (ECDSA is ignored)
-- Windows Hello **always authenticates** during key creation (`enforceBiometric` is effectively always `true`)
-- `setInvalidatedByBiometricEnrollment` and `useDeviceCredentials` are ignored
-- **Decryption is not supported** on Windows
+- **Key Type**: Windows Hello only supports **RSA-2048** keys (ECDSA requests are automatically promoted to RSA).
+- **Authentication**: Windows Hello **always authenticates** during key creation (`enforceBiometric` is effectively always `true`).
+- **Configuration**: `setInvalidatedByBiometricEnrollment` and `useDeviceCredentials` arguments are ignored on this platform.
+- **Decryption**: **Not supported**. The Windows Hello API is designed primarily for authentication (signing) and does not expose general decryption capabilities for these keys.
 
 No additional configuration is required. The plugin will automatically use Windows Hello when available.
 
@@ -273,6 +275,18 @@ This package simplifies server authentication using biometrics. The following im
 
 When a user enrolls in biometrics, a key pair is generated. The private key is securely stored on the device, while the public key is sent to a server for registration. To authenticate, the user is prompted to use their biometrics, unlocking the private key. A cryptographic signature is then generated and sent to the server for verification. If the server successfully verifies the signature, it returns an appropriate response, authorizing the user.
 
+### Biometric Decryption
+
+The plugin also supports secure decryption, ensuring that sensitive data transmitted from the server can only be accessed by the authenticated user on their specific device.
+
+![Biometric Decryption Lifecycle](https://raw.githubusercontent.com/chamodanethra/biometric_signature/main/assets/usecase-2.png)
+
+1.  **Key Creation**: The device generates a key pair (EC or RSA) in secure hardware.
+2.  **Registration**: The public key is sent to the backend server.
+3.  **Encryption**: The server encrypts the sensitive payload using the public key.
+4.  **Authentication**: The encrypted payload is sent to the device. The user must authenticate biometrically to proceed.
+5.  **Decryption**: Once authenticated, the secure hardware uses the private key to decrypt the payload, revealing the plaintext data to the app.
+
 ## Class: BiometricSignaturePlugin
 
 This class provides methods to manage and utilize biometric authentication for secure server interactions. It supports both Android and iOS platforms.

android/build.gradle

@@ -57,7 +57,7 @@ android {
     }
 
     dependencies {
-        implementation("androidx.biometric:biometric:1.4.0-alpha04")
+        implementation("androidx.biometric:biometric:1.4.0-alpha05")
         implementation("androidx.appcompat:appcompat:1.6.1")
         implementation("org.jetbrains.kotlinx:kotlinx-coroutines-android:1.10.2")
     }

assets/usecase-2.jpeg

@@ -1,5 +1,5 @@
 PODS:
-  - biometric_signature (9.0.0):
+  - biometric_signature (9.0.1):
     - Flutter
   - Flutter (1.0.0)
   - shared_preferences_foundation (0.0.1):
@@ -20,7 +20,7 @@ EXTERNAL SOURCES:
     :path: ".symlinks/plugins/shared_preferences_foundation/darwin"
 
 SPEC CHECKSUMS:
-  biometric_signature: e3da6b76957b6a9cd71e62c1664be9174d4a2d80
+  biometric_signature: da57d4ae319902aa96e8193271f7b38ab26db278
   Flutter: cabc95a1d2626b1b06e7179b784ebcf0c0cde467
   shared_preferences_foundation: 9e1978ff2562383bd5676f64ec4e9aa8fa06a6f7
 

banking_app/ios/Podfile.lock

@@ -1,5 +1,5 @@
 PODS:
-  - biometric_signature (9.0.0):
+  - biometric_signature (9.0.1):
     - FlutterMacOS
   - FlutterMacOS (1.0.0)
   - shared_preferences_foundation (0.0.1):
@@ -20,7 +20,7 @@ EXTERNAL SOURCES:
     :path: Flutter/ephemeral/.symlinks/plugins/shared_preferences_foundation/darwin
 
 SPEC CHECKSUMS:
-  biometric_signature: fcc23fe926798544af948f78621af1e85b35d372
+  biometric_signature: 4e16dbaa951c17a54a809d81c5f46c4c8878a1c2
   FlutterMacOS: d0db08ddef1a9af05a5ec4b724367152bb0500b1
   shared_preferences_foundation: 9e1978ff2562383bd5676f64ec4e9aa8fa06a6f7
 

banking_app/macos/Podfile.lock

@@ -15,7 +15,7 @@ packages:
       path: ".."
       relative: true
     source: path
-    version: "9.0.0"
+    version: "9.0.1"
   boolean_selector:
     dependency: transitive
     description:

banking_app/pubspec.lock

@@ -1,5 +1,5 @@
 PODS:
-  - biometric_signature (9.0.0):
+  - biometric_signature (9.0.1):
     - Flutter
   - Flutter (1.0.0)
   - shared_preferences_foundation (0.0.1):
@@ -20,7 +20,7 @@ EXTERNAL SOURCES:
     :path: ".symlinks/plugins/shared_preferences_foundation/darwin"
 
 SPEC CHECKSUMS:
-  biometric_signature: e3da6b76957b6a9cd71e62c1664be9174d4a2d80
+  biometric_signature: da57d4ae319902aa96e8193271f7b38ab26db278
   Flutter: cabc95a1d2626b1b06e7179b784ebcf0c0cde467
   shared_preferences_foundation: 9e1978ff2562383bd5676f64ec4e9aa8fa06a6f7
 

document_signer/ios/Podfile.lock

@@ -1,5 +1,5 @@
 PODS:
-  - biometric_signature (9.0.0):
+  - biometric_signature (9.0.1):
     - FlutterMacOS
   - FlutterMacOS (1.0.0)
   - shared_preferences_foundation (0.0.1):
@@ -20,7 +20,7 @@ EXTERNAL SOURCES:
     :path: Flutter/ephemeral/.symlinks/plugins/shared_preferences_foundation/darwin
 
 SPEC CHECKSUMS:
-  biometric_signature: fcc23fe926798544af948f78621af1e85b35d372
+  biometric_signature: 4e16dbaa951c17a54a809d81c5f46c4c8878a1c2
   FlutterMacOS: d0db08ddef1a9af05a5ec4b724367152bb0500b1
   shared_preferences_foundation: 9e1978ff2562383bd5676f64ec4e9aa8fa06a6f7
 

document_signer/macos/Podfile.lock

@@ -15,7 +15,7 @@ packages:
       path: ".."
       relative: true
     source: path
-    version: "9.0.0"
+    version: "9.0.1"
   boolean_selector:
     dependency: transitive
     description: