Add AES-256-GCM encryption to core and HKDF key derivation to world-vercel

[TooTallNate]

Summary

• Adds browser-compatible encrypt()/decrypt() functions in @workflow/core/encryption using Web Crypto API (AES-256-GCM)
• Adds deriveRunKey() and fetchDeploymentKey() to @workflow/world-vercel for HKDF-SHA256 per-run key derivation
• Implements getEncryptionKeyForRun in createVercelWorld()

[vercel]

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Actions	Updated (UTC)
example-nextjs-workflow-turbopack	Error	Open in v0	Feb 15, 2026 10:20am
example-nextjs-workflow-webpack	Error	Open in v0	Feb 15, 2026 10:20am
example-workflow	Ready	Preview, Comment, Open in v0	Feb 15, 2026 10:20am
workbench-astro-workflow	Ready	Preview, Comment, Open in v0	Feb 15, 2026 10:20am
workbench-express-workflow	Ready	Preview, Comment, Open in v0	Feb 15, 2026 10:20am
workbench-fastify-workflow	Ready	Preview, Comment, Open in v0	Feb 15, 2026 10:20am
workbench-hono-workflow	Ready	Preview, Comment, Open in v0	Feb 15, 2026 10:20am
workbench-nitro-workflow	Ready	Preview, Comment, Open in v0	Feb 15, 2026 10:20am
workbench-nuxt-workflow	Ready	Preview, Comment, Open in v0	Feb 15, 2026 10:20am
workbench-sveltekit-workflow	Ready	Preview, Comment, Open in v0	Feb 15, 2026 10:20am
workbench-vite-workflow	Ready	Preview, Comment, Open in v0	Feb 15, 2026 10:20am
workflow-docs	Ready	Preview, Comment, Open in v0	Feb 15, 2026 10:20am
workflow-nest	Ready	Preview, Comment, Open in v0	Feb 15, 2026 10:20am
workflow-swc-playground	Ready	Preview, Comment, Open in v0	Feb 15, 2026 10:20am

[changeset-bot]

🦋 Changeset detected

Latest commit: e38c65b

The changes in this PR will be included in the next version bump.

This PR includes changesets to release 15 packages

Name	Type
@workflow/core	Patch
@workflow/world-vercel	Patch
@workflow/builders	Patch
@workflow/cli	Patch
@workflow/next	Patch
@workflow/nitro	Patch
@workflow/web-shared	Patch
workflow	Patch
@workflow/astro	Patch
@workflow/nest	Patch
@workflow/rollup	Patch
@workflow/sveltekit	Patch
@workflow/vite	Patch
@workflow/world-testing	Patch
@workflow/nuxt	Patch

Not sure what this means? Click here to learn what changesets are.

Click here if you're a maintainer who wants to add another changeset to this PR

[github-actions]

🧪 E2E Test Results

❌ Some tests failed

Summary

	Passed	Failed	Skipped	Total
✅ ▲ Vercel Production	405	0	36	441
✅ 💻 Local Development	520	0	68	588
✅ 📦 Local Production	336	0	56	392
✅ 🐘 Local Postgres	336	0	56	392
✅ 🪟 Windows	46	0	3	49
❌ 🌍 Community Worlds	105	42	9	156
✅ 📋 Other	126	0	21	147
Total	1874	42	249	2165

❌ Failed Tests

🌍 Community Worlds (42 failed)

turso (42 failed):

• addTenWorkflow
• addTenWorkflow
• should work with react rendering in step
• promiseAllWorkflow
• promiseRaceWorkflow
• promiseAnyWorkflow
• hookWorkflow
• webhookWorkflow
• sleepingWorkflow
• nullByteWorkflow
• workflowAndStepMetadataWorkflow
• fetchWorkflow
• promiseRaceStressTestWorkflow
• error handling error propagation workflow errors nested function calls preserve message and stack trace
• error handling error propagation workflow errors cross-file imports preserve message and stack trace
• error handling error propagation step errors basic step error preserves message and stack trace
• error handling error propagation step errors cross-file step error preserves message and function names in stack
• error handling retry behavior regular Error retries until success
• error handling retry behavior FatalError fails immediately without retries
• error handling retry behavior RetryableError respects custom retryAfter delay
• error handling retry behavior maxRetries=0 disables retries
• error handling retry behavior workflow completes despite transient 5xx on step_completed
• error handling catchability FatalError can be caught and detected with FatalError.is()
• hookCleanupTestWorkflow - hook token reuse after workflow completion
• concurrent hook token conflict - two workflows cannot use the same hook token simultaneously
• stepFunctionPassingWorkflow - step function references can be passed as arguments (without closure vars)
• stepFunctionWithClosureWorkflow - step function with closure variables passed as argument
• closureVariableWorkflow - nested step functions with closure variables
• spawnWorkflowFromStepWorkflow - spawning a child workflow using start() inside a step
• health check (queue-based) - workflow and step endpoints respond to health check messages
• pathsAliasWorkflow - TypeScript path aliases resolve correctly
• Calculator.calculate - static workflow method using static step methods from another class
• AllInOneService.processNumber - static workflow method using sibling static step methods
• ChainableService.processWithThis - static step methods using this to reference the class
• thisSerializationWorkflow - step function invoked with .call() and .apply()
• customSerializationWorkflow - custom class serialization with WORKFLOW_SERIALIZE/WORKFLOW_DESERIALIZE
• instanceMethodStepWorkflow - instance methods with "use step" directive
• crossContextSerdeWorkflow - classes defined in step code are deserializable in workflow context
• stepFunctionAsStartArgWorkflow - step function reference passed as start() argument
• pages router addTenWorkflow via pages router
• pages router promiseAllWorkflow via pages router
• pages router sleepingWorkflow via pages router

Details by Category

✅ ▲ Vercel Production

App	Passed	Failed	Skipped
✅ astro	45	0	4
✅ example	45	0	4
✅ express	45	0	4
✅ fastify	45	0	4
✅ hono	45	0	4
✅ nitro	45	0	4
✅ nuxt	45	0	4
✅ sveltekit	45	0	4
✅ vite	45	0	4

✅ 💻 Local Development

App	Passed	Failed	Skipped
✅ astro-stable	42	0	7
✅ express-stable	42	0	7
✅ fastify-stable	42	0	7
✅ hono-stable	42	0	7
✅ nextjs-turbopack-canary	46	0	3
✅ nextjs-turbopack-stable	46	0	3
✅ nextjs-webpack-canary	46	0	3
✅ nextjs-webpack-stable	46	0	3
✅ nitro-stable	42	0	7
✅ nuxt-stable	42	0	7
✅ sveltekit-stable	42	0	7
✅ vite-stable	42	0	7

✅ 📦 Local Production

App	Passed	Failed	Skipped
✅ astro-stable	42	0	7
✅ express-stable	42	0	7
✅ fastify-stable	42	0	7
✅ hono-stable	42	0	7
✅ nitro-stable	42	0	7
✅ nuxt-stable	42	0	7
✅ sveltekit-stable	42	0	7
✅ vite-stable	42	0	7

✅ 🐘 Local Postgres

App	Passed	Failed	Skipped
✅ astro-stable	42	0	7
✅ express-stable	42	0	7
✅ fastify-stable	42	0	7
✅ hono-stable	42	0	7
✅ nitro-stable	42	0	7
✅ nuxt-stable	42	0	7
✅ sveltekit-stable	42	0	7
✅ vite-stable	42	0	7

✅ 🪟 Windows

App	Passed	Failed	Skipped
✅ nextjs-turbopack	46	0	3

❌ 🌍 Community Worlds

App	Passed	Failed	Skipped
✅ mongodb-dev	3	0	0
✅ mongodb	46	0	3
✅ redis-dev	3	0	0
✅ redis	46	0	3
✅ turso-dev	3	0	0
❌ turso	4	42	3

✅ 📋 Other

App	Passed	Failed	Skipped
✅ e2e-local-dev-nest-stable	42	0	7
✅ e2e-local-postgres-nest-stable	42	0	7
✅ e2e-local-prod-nest-stable	42	0	7

---

📋 View full workflow run

---

❌ Some E2E test jobs failed:

• Vercel Prod: failure
• Local Dev: success
• Local Prod: failure
• Local Postgres: failure
• Windows: success

Check the workflow run for details.

[Copilot]

Pull request overview

This PR adds AES-256-GCM encryption with HKDF-SHA256 key derivation to the @workflow/world-vercel package. The implementation provides per-run encryption isolation by deriving unique keys from a deployment key, project ID, and run ID. It integrates seamlessly with the async serialization infrastructure added in PR #955 and uses the client-generated run IDs from PR #954.

Changes:

• Implements createEncryptor() and createEncryptorFromEnv() functions with full Encryptor interface support
• Adds AES-256-GCM encryption with random nonces and 128-bit authentication tags
• Uses HKDF-SHA256 for per-run key derivation with projectId and runId as context
• Wires encryption into createVercelWorld() via environment variables (VERCEL_DEPLOYMENT_KEY, VERCEL_PROJECT_ID)
• Includes 18 comprehensive tests covering round-trip, format validation, isolation, and tamper detection

Reviewed changes

Copilot reviewed 3 out of 3 changed files in this pull request and generated 12 comments.

File	Description
packages/world-vercel/src/encryption.ts	Core encryption implementation with key derivation, encrypt/decrypt, and key material access
packages/world-vercel/src/encryption.test.ts	Comprehensive test suite with 18 tests covering functionality and security properties
packages/world-vercel/src/index.ts	Integration into World creation and public API exports

Comments suppressed due to low confidence (1)

packages/world-vercel/src/index.ts:12

• The VercelEncryptionConfig interface is exported from encryption.ts but not re-exported from index.ts. Users who want to use createEncryptor() directly would need to import from the internal encryption module, which is not a typical pattern.

Consider adding to index.ts:

export type { VercelEncryptionConfig } from './encryption.js';

This follows the pattern already established with APIConfig and makes the public API more discoverable.

export { createEncryptor, createEncryptorFromEnv } from './encryption.js';
export { createQueue } from './queue.js';
export { createStorage } from './storage.js';
export { createStreamer } from './streamer.js';
export type { APIConfig } from './utils.js';

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[TooTallNate]

Warning

This pull request is not mergeable via GitHub because a downstack PR is open. Once all requirements are satisfied, merge this PR as a stack on Graphite.
Learn more

• Add encryption-aware o11y for CLI and web #1000
• Wire encryption into serialization layer #957
• Add AES-256-GCM encryption to core and HKDF key derivation to world-vercel #956 👈 (View in Graphite)
• Fix projectConfig.projectId containing project name instead of ID #999
• Add World.getEncryptionKeyForRun and thread encryption key through serialization #979
• Make serialization functions async #978
• main

This stack of pull requests is managed by Graphite. Learn more about stacking.