@@ -5,6 +5,24 @@ All notable changes to QRAMM CryptoDeps will be documented in this file.
55The format is based on [ Keep a Changelog] ( https://keepachangelog.com/en/1.1.0/ ) ,
66and this project adheres to [ Semantic Versioning] ( https://semver.org/spec/v2.0.0.html ) .
77
8+ ## [ 1.2.1] - 2025-12-27
9+
10+ ### Added
11+ - ** Expanded remediation database** : 30+ additional algorithm entries
12+ - Authenticated encryption: ChaCha20-Poly1305, AES-GCM, XSalsa20-Poly1305
13+ - MACs: HMAC, HMAC-SHA256/512, Poly1305
14+ - Post-quantum algorithms: ML-KEM, ML-DSA (marked as quantum-safe)
15+ - NIST curves: P-256, P-384, P-521, secp256k1
16+ - RSA variants: RSA-OAEP, RSA-PSS, PS256/384/512
17+ - ECDH variants: ECDH-ES
18+ - Hash functions: BLAKE2b, BLAKE2s, BLAKE3
19+ - Chinese national algorithms: SM2, SM3, SM4
20+
21+ ### Fixed
22+ - ** @noble/ed25519 false positives** : Database entry incorrectly reported RSA, ECDSA, ECDH, AES; now correctly shows only Ed25519 and X25519
23+ - ** Maven property resolution** : Parser now resolves ` ${property} ` placeholders from ` <properties> ` section (e.g., ` ${bouncycastle.version} ` → ` 1.77 ` )
24+ - ** AES remediation** : Added generic "AES" entry for cases where key size isn't specified
25+
826## [ 1.2.0] - 2025-12-27
927
1028### Added
@@ -61,6 +79,7 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
6179- Maps findings to CNSA 2.0 compliance requirements
6280- Supports OMB M-23-02 cryptographic inventory requirements
6381
82+ [ 1.2.1 ] : https://github.com/csnp/qramm-cryptodeps/compare/v1.2.0...v1.2.1
6483[ 1.2.0 ] : https://github.com/csnp/qramm-cryptodeps/compare/v1.1.0...v1.2.0
6584[ 1.1.0 ] : https://github.com/csnp/qramm-cryptodeps/compare/v1.0.0...v1.1.0
6685[ 1.0.0 ] : https://github.com/csnp/qramm-cryptodeps/releases/tag/v1.0.0
0 commit comments