Jeff Emmett 45f5cea095 fix(security): AES-256-GCM encryption at rest, XSS escape, salted hashes ... - C-1: Replace Base64 fake encryption with real AES-256-GCM server-side encryption for linked wallet data (HKDF-derived key from JWT_SECRET) - H-1: Escape token name/symbol in balance table to prevent XSS - H-2: Salt address hash with user ID to prevent cross-user correlation - M-4: Remove cleartext sessionStorage cache for linked wallets Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>		2026-03-09 17:42:09 -07:00
..
components	fix(security): AES-256-GCM encryption at rest, XSS escape, salted hashes	2026-03-09 17:42:09 -07:00
landing.ts	refactor: complete rfunds → rflows rename across configs and references	2026-03-03 19:13:14 -08:00
mod.ts	fix(encryptid): harden wallet link flow + add device_registration type	2026-03-09 17:17:50 -07:00