1.1.2 (2026-05-07)
✨ Features
- add randomUUIDv7 (RFC 9562 §5.7) and disableEntropyCache option (#1033) (cacf92a)
- add range support to
bufferToString()andab2str()(#1028) (87954b8) - add raw key formats (raw-public, raw-private, raw-seed) (#1034) (33906ca)
- add SLH-DSA sign and verify support (#1030) (1e8b312)
- add TurboSHAKE and KangarooTwelve digests (#1032) (8254643)
- perf: Remove unnecessary construction of native ArrayBuffer (#1015) (c614fe5)
- PQC JWK import/export for ML-DSA and ML-KEM (#1016) (e33f183)
- PQC PKCS#8 seed validation for ML-DSA and ML-KEM (#1017) (849029a)
🐛 Bug Fixes
- deduplicate and canonicalize CryptoKey.usages (#1020) (28be337)
- default RSA-PSS saltLength to RSA_PSS_SALTLEN_MAX_SIGN (#1029) (78a047d)
- EC named-curve match, on-curve check, uncompressed SPKI export (#1027) (9155523)
- Fix include of JSIConverter in HybridUtils.cpp (#1022) (fd5e5d0)
- improve subtle.supports per spec, rename KMAC/cSHAKE length → outputLength (#1026) (dcf78c5)
- reject SharedArrayBuffer in WebCrypto and getRandomValues (#1019) (39551e4)
- required-arg checks, validation ordering, and length=null in subtle (#1024) (5b23b02)
- route raw / raw-secret / raw-public per-algorithm in subtle (#1023) (d2c46b1)
- throw spec-correct DOMException types in WebCrypto error paths (#1018) (5a10d66)
- validate JWK alg/crv/kty per algorithm in subtle.importKey (#1021) (3076769)