Download Latest Version stegcore-v2.0.12-linux-x86_64.zip (59.6 MB)
Email in envelope

Get an email when there's a new version of Stegcore

Home / v2.0.12
Name Modified Size InfoDownloads / Week
Parent folder
stegcore-v2.0.12-linux-x86_64.zip 2026-03-12 59.6 MB
2 2 weekly downloads
stegcore-v2.0.12-macos-arm64.zip 2026-03-12 37.3 MB
1 1 weekly downloads
stegcore-v2.0.12-windows-x86_64.zip 2026-03-12 30.2 MB
3 3 weekly downloads
README.md 2026-03-12 1.3 kB
0
Stegcore v2.0.12 source code.tar.gz 2026-03-12 74.0 MB
0
Stegcore v2.0.12 source code.zip 2026-03-12 74.1 MB
0
Totals: 6 Items   275.2 MB 6

Security

  • Passphrase memory hardening — CLI passphrase converted to bytearray immediately after prompt; zeroed with buf[:] = b"\x00" * len(buf) after use. _derive_key, encrypt, decrypt, and derive_key in core/crypto.py now accept str | bytes | bytearray to support this pattern.
  • Bandit B110 fixedexcept Exception: pass in core/utils.py asset() narrowed to except (ImportError, ModuleNotFoundError) with explanatory comment.
  • Temp file security documentedtemp_file() docstring now explicitly states mkstemp mode 0o600, guaranteed finally cleanup, and that plaintext is never written to the temp file.
  • Key file auditwrite_key_file docstring updated to enumerate stored fields and explicitly state the passphrase and derived key are never persisted.
  • bandit -r core/ reports zero findings (Undefined/Low/Medium/High all 0).

Added

  • Full pytest test suite — 64 tests across tests/test_crypto.py, tests/test_steg.py, tests/test_key_file.py, and tests/test_integration.py. Coverage enforced at ≥ 90% (actual: 93.73%).
  • CI test job.github/workflows/ci.yml runs the full test suite on every push and pull request to main (Python 3.11, ubuntu-latest).
Source: README.md, updated 2026-03-12