BUG: Correct IdentifiableSecretsComputeDerivedCommonAnnotatedKey and ComputeCommonAnnotatedHash helpers to preserve all randomized byte input entropy by encoding and decoding this data as base64.
NEW: Add CommonAnnotatedKeyChecksumBytes and ChecksumBytesIndex convenience methods for retrieving key checksum data.
This change ensures that all byte[] randomized data is processed as base64 (rather than encoding and decoding as UTF8 a process that stripped entropy). This change includes testing that achieves effectively 100% code coverage (which will assist in future refactoring/simplification of code).
Regrettably, I also noted that the SecretMasker test class had been commented out. As a result, tests have not been running for some period of time. I've fixed up some regressions that have accumulated but did not fix a condition in which some lower confidence findings produce duplicated results for the same test data. #95 opened to address this.
IdentifiableSecretsComputeDerivedCommonAnnotatedKeyandComputeCommonAnnotatedHashhelpers to preserve all randomized byte input entropy by encoding and decoding this data as base64.CommonAnnotatedKeyChecksumBytesandChecksumBytesIndexconvenience methods for retrieving key checksum data.This change ensures that all byte[] randomized data is processed as base64 (rather than encoding and decoding as UTF8 a process that stripped entropy). This change includes testing that achieves effectively 100% code coverage (which will assist in future refactoring/simplification of code).
Regrettably, I also noted that the
SecretMaskertest class had been commented out. As a result, tests have not been running for some period of time. I've fixed up some regressions that have accumulated but did not fix a condition in which some lower confidence findings produce duplicated results for the same test data. #95 opened to address this.