iven d266a1435f feat(security): add AES-GCM encryption for localStorage fallback ...

- Encrypt credentials before storing in localStorage when OS keyring unavailable
- Decrypt on retrieval with automatic fallback
- Backward compatible with existing unencrypted data (migration on next set)
- Add comprehensive unit tests (11 test cases)

Security: Credentials are now encrypted using AES-GCM when
OS keyring is unavailable, preventing plaintext exposure.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

2026-03-21 17:13:50 +08:00

5.9 KiB

Raw Blame History

View Raw