Skip to content

3va 1.0.0

Choose a tag to compare

View all tags
@OdinoCano OdinoCano released this 04 Jun 19:59
· 86 commits to main since this release
v1.0.0
fe5b719

[1.0.0] — 2026-06-04

Added

  • CDP Inspector (--inspect) — WebSocket Chrome DevTools Protocol server. debugger; statements are rewritten to __3va_debugger__() at source-load time. Pause is implemented via tokio::task::block_in_place + Condvar so the Tokio runtime remains responsive. Connect with chrome://inspect or any DAP-compatible IDE.
  • NAPI native module loading (--allow-ffi) — ~30 NAPI v8 functions exposed as unsafe extern "C". .node addons loaded via the standard require('./addon.node') path. Requires --allow-ffi permission.
  • WebAssembly (WASM) — WASI-preview1-compatible runtime via wasmtime. Supports .wasm and .wat files. Full permission integration (filesystem preopens, env vars scoped to granted capabilities).
  • Post-quantum TLS (__pqTlsConnect) — hybrid classical TLS + ML-KEM-768 key exchange. Returns { connId, pqSharedSecret }. Non-blocking: runs inside spawn_blocking. Requires --allow-net.
  • Post-quantum crypto JS APIrequire('crypto').pq.kem.{generateKeypair,encapsulate,decapsulate} (ML-KEM-768) and require('crypto').pq.dsa.{generateKeypair,sign,verify} (ML-DSA-65).
  • Fuzz targets in CI — 3 fuzz targets built on nightly; 30 s smoke run in GitHub Actions.
  • Doc-tests — public API surfaces of vvva_core, vvva_permissions, vvva_crypto, and vvva_js now have doc-tests.
  • SECURITY.md — explicit acceptance rationale for RUSTSEC-2023-0071 (Marvin Attack); documents "before 1.0" review requirement.
  • Process manager subcommandsstart, stop, restart, status, logs, delete for running scripts as managed background daemons.

Fixed

  • __pqTlsConnect was synchronous on the JS event loop (blocked all timers and I/O during TLS handshake). Now runs inside spawn_blocking and is registered as Async.
  • SemverRange silently rejected "latest", "1.x", ">=1.0.0 <2.0.0" forms — added dist-tag, x-range, and compound-range support.
  • Dependency resolver produced non-deterministic lockfiles (HashMap iteration order). Resolution stack is now sorted alphabetically.
  • Version conflict in the resolver was silent — now emits a structured tracing::warn!.
  • Content-Length header forwarded to JS did not reflect the 100 MiB internal cap.

Changed

  • rquickjs-core 0.6.2 vendored at vendor/rquickjs-core/ with a one-line fix for the never type fallback future-incompatibility lint (Rust Edition 2024).
  • All crate versions bumped to 1.0.0.

Added

  • Expo / React Native package support (crates/js/src/builtins/modules.rs, crates/js/src/transpiler.rs):
    Real Expo npm packages (expo-modules-core, expo-constants, expo-asset, expo-font, expo-file-system) load and execute without errors. 45/45 tests pass in test-projects/expo-test/.

    ESM→CJS converter fixes:

    • Circular dependency guardmodule.exports pre-cached before eval; circular requires get the partial exports object instead of re-executing the module (matches Node.js behavior, eliminates stack overflows).
    • export default X chained assignment — was setting .default on the OLD module.exports object due to JS LHS-ref evaluation order. Now uses two statements: module.exports = X + deferred module.exports.default = module.exports.
    • Destructuring exportsexport const { a, b } = X and export const [a, b] = X now correctly emit individual module.exports.a = a entries.
    • Uninitialised var exportexport var X; is now deferred so TypeScript enum IIFEs can fill the value before module.exports.X is set.
    • Empty export markerexport {} (OXC emits this to tag a file as ESM) is now a no-op; previously surfaced as "unsupported keyword: export".
    • Dynamic import() — inline import(specifier) expressions are rewritten to __importAsync(specifier) which wraps synchronous require() in a resolved Promise.
    • Deferred exports — all deferred assignments wrapped in try{}catch{} to tolerate read-only properties defined by Object.defineProperty.

    Platform-aware extension resolution:

    • resolve_file_path probes .web.js, .web.tsx, .web.ts, .web.mjs before the generic .js, .tsx, .ts variants. Expo .web.* files are the correct choice in a server/CLI context (they avoid native bridge imports).
    • Index file probing follows the same order (index.web.ts before index.ts).

    TypeScript transpiler:

    • SemanticBuilder::with_enum_eval(true) added — prevents OXC panic when transforming TypeScript const enum declarations.

    New React Native / Expo polyfills:

    • react-native pre-cached in __requireCache with Platform, NativeModules, TurboModuleRegistry, PixelRatio, Dimensions, StyleSheet, Animated, and all major component stubs.
    • @react-native/assets-registry pre-cached with registerAsset / getAssetByID.
    • NativeModules proxy changed to return undefined for unregistered module names (previously returned a truthy function-proxy, causing JSON.parse(function(){}) errors in expo-constants).
    • expo-modules-core polyfill extended with NativeModule, SharedObject, SharedRef (extendable base classes), registerWebModule, Platform, uuid.
    • requireOptionalNativeModule returns null — correct for a web/server environment where optional native modules are absent.
    • process.env.EXPO_OS = 'web' — Expo packages branch on this to select server-safe code paths.

  • CPU sampling profiler (--prof) (crates/js/src/profiler.rs):

    • 3va run app.ts --prof — collects samples every --prof-interval ms (default 10) via setInterval + new Error().stack; writes V8-compatible .cpuprofile JSON.
    • --flamegraph=<path> — also emits an Inferno-style SVG flamegraph using the inferno crate.
    • 3va prof <file> subcommand — post-hoc analysis: prints top-N hot functions by self% or re-generates a flamegraph from an existing .cpuprofile.
    • console.profile(label) / console.profileEnd(label) — JS-side region markers, active when --prof is passed.
    • JsEngine::new_with_profiler(perms, interval_ms) / JsEngine::take_profiler() — public Rust API.
    • 7 unit tests: stack parser, location parser, folded-stacks aggregation, .cpuprofile JSON validity, analyze_cpuprofile, JS bootstrap interval embedding.

  • Buffer como subclase real de Uint8Array (builtins/buffer.rs):
    Reescrito usando el patrón prototype swap: el constructor devuelve un Uint8Array real con Buffer.prototype en su cadena. Esto garantiza:

    • buf instanceof Uint8Arraytrue
    • buf[0] → valor de byte correcto (proxy nativo de TypedArray)
    • [...buf] spread, buf.set(), Array.from(buf) — todos funcionan como nativos
    • DataView, Float32Array y otras vistas sobre buf.buffer funcionan sin conversión
    • Compatibles con ws, msgpackr, protobufjs y cualquier librería que accede a bytes directamente
      Todos los métodos (readUInt32BE, writeFloatLE, BigUInt64, slice, subarray, etc.) actualizados para operar sobre this directamente.

  • crypto.createSign/createVerify — RSA PKCS1v15 y ECDSA reales (builtins/crypto.rs):
    Implementación nativa vía crates Rust. Soporta:

    • RSA PKCS#1 v1.5: algoritmos RSA-SHA256, RSA-SHA384, RSA-SHA512, SHA256, SHA1
    • ECDSA P-256: SHA256 con clave P-256
    • ECDSA P-384: SHA384 con clave P-384
    • Salida en formato DER (compatible con jsonwebtoken, passport-jwt, jose)
    • Acepta DER y P1363 (raw r‖s) en verificación
    const sig = crypto.createSign('RSA-SHA256').update(data).sign(privateKey);
crypto.createVerify('RSA-SHA256').update(data).verify(publicKey, sig); // → true

  • crypto.createPrivateKey/createPublicKey/createSecretKey (builtins/crypto.rs):
    Importa claves PEM existentes en objetos KeyObject compatibles con Node.js.

    • .type'private', 'public', o 'secret'
    • .asymmetricKeyType'rsa' o 'ec'
    • .export() → PEM string o Uint8Array (con format: 'der')
      Desbloquea: jsonwebtoken con claves externas, passport-jwt, @panva/jose.

  • crypto.sign/crypto.verify (one-shot, Node.js 15+) (builtins/crypto.rs):

    const sig = crypto.sign('SHA256', data, privateKey);
crypto.verify('SHA256', data, publicKey, sig); // → boolean

  • crypto.createHash('md5') (builtins/crypto.rs):
    MD5 ahora soportado vía crate md-5 0.10 (algoritmo RustCrypto). Para fingerprinting de contenido,
    ETags, compatibilidad legacy. No recomendado para seguridad.

  • crypto.getCiphers()/getHashes()/getCurves() (builtins/crypto.rs):
    Nuevas funciones de enumeración que devuelven los algoritmos soportados.

  • crypto.generateKeyPair / generateKeyPairSync — RSA y EC nativos (builtins/crypto.rs):
    Generación de pares de claves asimétricas vía Rust (rsa 0.9, p256 0.13, p384 0.13).

    • crypto.generateKeyPairSync('rsa', { modulusLength: 2048 }){ publicKey, privateKey } con .export() que devuelve PEM PKCS#8/SPKI.
    • crypto.generateKeyPair('rsa', opts, callback) — versión async con spawn_blocking.
    • Curvas EC soportadas: P-256 (prime256v1), P-384 (secp384r1).
    • Claves RSA-PSS: misma implementación que RSA estándar.
      Desbloquea: JWT RS256/ES256/ES384 con jsonwebtoken, passport-jwt, node-jose.

  • crypto.webcrypto (builtins/crypto.rs):
    Añadido crypto.webcrypto = { subtle } como alias al crypto.subtle existente.
    Requerido por Hono, edge runtimes, y cualquier código que accede a WebCrypto vía require('crypto').webcrypto.

  • crypto.scryptSync — implementación real con scrypt (builtins/crypto.rs):
    Sustituye la aproximación anterior (PBKDF2 como fallback) por __cryptoScryptSync, que llama
    directamente a la implementación nativa scrypt::scrypt. Nuevo binding Rust síncrono análogo a __cryptoPbkdf2Sync.

  • child_process.execSync / spawnSync (builtins/child_process.rs):
    Implementación real que bloquea el hilo llamante vía std::process::Command::output().

    • execSync(cmd, opts) — devuelve stdout como Buffer o string; lanza en exit ≠ 0.
    • spawnSync(cmd, args, opts) — devuelve { status, stdout, stderr, pid, signal, error }.
    • Ambos respetan el sistema de capabilities: requieren --allow-child-process.
      Desbloquea: Vite/esbuild postinstall, Prisma query engine bootstrap, CLIs con Node.js.

  • util.parseArgs (builtins/modules.rs):
    Implementación completa del API de Node.js 18+ para parseo de argumentos CLI.
    Soporta: --flag, --key=value, --key value, flags booleanos, valores múltiples, positionals, --, defaults, y el campo tokens opcional.

  • reflect-metadata polyfill (builtins/modules.rs):
    Polyfill JS completo de la API Reflect.metadata para decoradores TypeScript.
    Implementa: defineMetadata, getMetadata, getOwnMetadata, hasMetadata, hasOwnMetadata,
    deleteMetadata, getMetadataKeys, getOwnMetadataKeys, decorate.
    Accesible vía require('reflect-metadata'). Desbloquea: NestJS, TypeORM, tsyringe, routing-controllers.

Fixed

  • assert.deepStrictEqual — implementación completa (builtins/modules.rs):
    La implementación anterior usaba JSON.stringify que fallaba con:

    • Valores undefined (eliminados por JSON)
    • TypedArrays (Uint8Array, Int32Array, etc.)
    • Referencias circulares
    • Objetos Date, RegExp, Map, Set
      La nueva implementación hace comparación estructural recursiva con:
    • Detección de ciclos vía lista de pares visitados
    • Soporte para Date (comparación por timestamp), RegExp (por string), TypedArray, Map, Set
    • Semántica estricta (===) vs no-estricta (==) según el método
      También añadidos: notDeepStrictEqual, notStrictEqual, ifError, fail.

  • Buffer.isBuffer(x) ahora devuelve true para Uint8Array nativo (builtins/buffer.rs):
    Anteriormente devolvía false para Uint8Array no envuelto en Buffer, rompiendo librerías que
    hacen if (!Buffer.isBuffer(x)) throw. Ahora Buffer.isBuffer(new Uint8Array(4)) === true.

  • util.inspect — manejo de referencias circulares y Symbol.for('nodejs.util.inspect.custom') (builtins/modules.rs):
    La implementación anterior hacía JSON.stringify que lanzaba en objetos circulares. Ahora:

    • Detecta ciclos y muestra [Circular *].
    • Llama obj[Symbol.for('nodejs.util.inspect.custom')] si existe (requerido por pino, winston, etc.).
    • Formatea funciones como [Function: name], fechas como ISO, y errors como [ErrorType: message].
    • Limita la profundidad (2 niveles por defecto, configurable con { depth: n }).

  • Framework detection — 3va dev ahora detecta y delega a 8 frameworks (crates/cli/src/main.rs):
    3va dev detecta automáticamente el framework del proyecto y delega en su dev server nativo.

    • Astro (astro.config.*astro dev)
    • Next.js (next.config.*next dev)
    • Nuxt (nuxt.config.*nuxi dev)
    • SvelteKit (svelte.config.* + @sveltejs/kitvite dev)
    • Remix (remix.config.*remix dev)
    • Gatsby (gatsby-config.*gatsby develop)
    • SolidStart (app.config.*vinxi dev)
    • Qwik (qwik.config.*qwik dev)
      Los flags --port, --host y --open se reenvían automáticamente al CLI del framework.

  • Process manager nativo — comandos start, stop, restart, status, logs, delete (crates/cli/src/proc.rs, crates/cli/src/main.rs):
    Nuevo sistema de gestión de procesos en producción similar a PM2:

    • 3va start <entry> — inicia un proceso como daemon (nuevo session group vía setsid).
    • 3va stop <name> — detiene con SIGTERM → SIGKILL tras 1.5 s.
    • 3va restart <name> — reinicia con la misma configuración.
    • 3va status [name] — muestra estado de procesos con códigos de color.
    • 3va logs <name> — muestra las últimas N líneas del log.
    • 3va delete <name> — elimina permanentemente el proceso y sus logs.
      Los metadatos se almacenan en ~/.3va/processes/<name>.json y los logs en ~/.3va/processes/<name>.log.

  • EventEmitter — API completa (modules.rs):
    Nuevos métodos que muchos paquetes npm dan por sentados:

    • prependListener(event, fn) / prependOnceListener(event, fn) — agregan listeners al inicio de la cola (en lugar del final).
    • rawListeners(event) — devuelve los wrappers internos de once tal como están (a diferencia de listeners() que los desenvuelve).
    • eventNames() — array con todos los eventos que tienen listeners registrados.
    • getMaxListeners() — devuelve el límite configurado con setMaxListeners().
    • EventEmitter.listenerCount(emitter, event) — método estático de compatibilidad Node.js.
    • EventEmitter.defaultMaxListeners — propiedad estática equivalente a EventEmitter.setMaxListeners.
    • listeners() corregido: ahora devuelve la función original (no el wrapper de once).

  • zlib — Transform streams reales (builtins/zlib.rs):
    Las funciones createGzip, createGunzip, createDeflate, createInflate, createDeflateRaw, createInflateRaw ya no devuelven objetos vacíos. Ahora devuelven Transform streams con:

    • write(chunk[, enc, cb]) — comprime/descomprime asíncronamente; emite data con el resultado.
    • end([chunk][, cb]) — espera a que todos los write() pendientes completen antes de emitir finish/end.
    • pipe(dest) / unpipe(dest) — encadenamiento estándar de streams.
    • on/once/off/emit — interfaz EventEmitter completa.
    • pause(), resume(), destroy(), setEncoding().
    • Propagación correcta al destino (pipe) en eventos data y end.
    • Brotli: createBrotliCompress / createBrotliDecompress (alias sobre gzip — compresión real pendiente).

  • zlib — métodos síncronos reales (builtins/zlib.rs):
    gzipSync, gunzipSync, deflateSync, inflateSync, deflateRawSync, inflateRawSync,
    brotliCompressSync, brotliDecompressSync — ya no lanzan "not available". Están respaldados
    por las mismas funciones Rust (flate2) pero ejecutadas de forma síncrona (sin spawn_blocking).
    Útiles en transformaciones de build-time.

  • process — EventEmitter completo (builtins/process.rs):
    El objeto process ahora expone la API EventEmitter completa:
    on, once, off, emit, removeListener, removeAllListeners, addListener,
    prependListener, prependOnceListener, rawListeners, eventNames, listenerCount.
    Los listeners de señales (SIGINT, SIGTERM, etc.) se registran con la misma API.

  • process.memoryUsage() — valores reales en Linux (builtins/process.rs):
    Lee el RSS real de /proc/self/status. Devuelve { rss, heapTotal, heapUsed, external, arrayBuffers }.
    process.memoryUsage.rss() — atajo directo al RSS.

  • process.cpuUsage([prev]) — valores reales en Linux (builtins/process.rs):
    Lee tiempos de CPU de /proc/self/stat. Devuelve { user, system } en microsegundos.
    Acepta un valor previo para obtener el diferencial.

  • process.uptime() — segundos transcurridos desde el inicio del proceso.

  • process.title, process.execPath, process.execArgv — propiedades estándar.

  • process.abort() — llama a process.exit(1).

  • process.kill(pid) — llama a process.exit(0) si pid === process.pid.

  • process.report — objeto stub compatible con --report-* de Node.js.

  • process.allowedNodeEnvironmentFlagsSet vacío (compatibilidad).

  • process.setUncaughtExceptionCaptureCallback(fn) / hasUncaughtExceptionCaptureCallback().

  • os — valores reales del sistema (builtins/process.rs + modules.rs):

    • os.hostname() — nombre real del host vía gethostname(3).
    • os.totalmem() / os.freemem() — memoria real de /proc/meminfo en Linux.
    • os.uptime() — uptime real de /proc/uptime en Linux.
    • os.platform() / os.arch() — derivados de process.platform / process.arch.
    • os.homedir() / os.tmpdir() — respetan process.env.HOME / process.env.TMPDIR.
    • os.EOL'\r\n' en Windows, '\n' en Unix.
    • os.availableParallelism(), os.getPriority(), os.setPriority(), os.machine().
    • os.constants.signals, os.constants.errno, os.constants.priority con valores correctos.
    • os.userInfo() — respeta process.env.USER y process.env.HOME.

  • path — reescritura completa (modules.rs):
    Implementación generada por makePath(sep, isAbsFn) — soporta posix y win32 con la misma lógica:

    • path.relative(from, to) — antes devolvía to sin modificar. Ahora calcula la ruta relativa real con ...
    • path.normalize(p) — colapsa . y .. correctamente.
    • path.resolve(...parts) — sube hasta encontrar una parte absoluta o usa process.cwd().
    • path.posix — submódulo con separador / (mismo objeto en Linux/macOS).
    • path.win32 — submódulo con separador \ e isAbsolute con regex C:\.
    • require('path/posix'), require('node:path/posix'), require('path/win32'), require('node:path/win32').
    • path.toNamespacedPath(p) — identidad (no-op en POSIX).
    • path.matchesGlob() — stub (devuelve false).

  • fs — operaciones basadas en file descriptor (builtins/fs.rs):
    Respaldadas por una tabla de FDs Rust (Arc<Mutex<FdTable>>) con std::fs::File reales:

    • fs.open(path, flags[, mode], cb) / fs.openSync(path, flags[, mode])fd entero.
      Flags de texto: 'r', 'r+', 'w', 'w+', 'a', 'a+', 'wx', 'wx+', etc.
    • fs.close(fd[, cb]) / fs.closeSync(fd).
    • fs.read(fd, buffer, offset, length, position, cb) / fs.readSync(...) → bytes leídos.
    • fs.write(fd, buffer, offset, length, position, cb) / fs.writeSync(...) → bytes escritos.
    • fs.fstat(fd[, cb]) / fs.fstatSync(fd) → objeto stat con las mismas propiedades que statSync.
    • fs.fsync(fd[, cb]) / fs.fdatasync(fd[, cb]) — completado silencioso.
    • fs.ftruncate(fd[, len][, cb]) / fs.ftruncateSync.

  • fs.mkdtemp(prefix[, opts][, cb]) / fs.mkdtempSync(prefix) — crea un directorio temporal único.

  • fs.opendir(path[, opts][, cb]) / fs.opendirSync(path) — devuelve un objeto Dir con:

    • read([cb]) — entrada siguiente como Dirent o null al terminar; también retorna Promise.
    • readSync() — variante síncrona.
    • close([cb]) — cierra el directorio.
    • [Symbol.asyncIterator]() — iterable asíncrono compatible con for await...of.
    • [Symbol.iterator]() — iterable síncrono.

  • fs — métodos adicionales (modules.rs):
    fs.truncate, fs.lutimes, fs.lutimesSync, fs.lchown, fs.lchownSync,
    fs.chown, fs.chownSync, fs.fchown, fs.fchownSync,
    fs.fchmod, fs.fchmodSync, fs.link, fs.linkSync,
    fs.readlink, fs.readlinkSync.

  • stat_meta_to_json — helper compartido (builtins/fs.rs):
    Función Rust que serializa std::fs::Metadata a JSON. Usada por statSync, lstatSync y el nuevo fstatSync.

Added

  • WinterCG Headers classnew Headers(init?) where init may be a plain object, a
    [[key, value]] array, or another Headers. Case-insensitive; iterable via for..of,
    entries(), keys(), values(), forEach(). getSetCookie() returns all set-cookie
    values as a separate array. (modules.rs)

  • WinterCG Request classnew Request(url | request, init?). Properties: url, method,
    headers (Headers), bodyUsed, signal, duplex, mode, credentials, cache,
    redirect, referrer, integrity, keepalive. Body methods: text(), json(),
    arrayBuffer(), bytes(), blob(), formData(), clone(). fetch() now accepts a
    Request object as its first argument. (modules.rs + fetch.rs)

  • WinterCG Response classnew Response(body?, init?). Properties: ok, status,
    statusText, headers (Headers), url, redirected, type, bodyUsed. Body methods
    same as Request. Static: Response.json(data, init?), Response.error(),
    Response.redirect(url, status?). fetch() now returns a Response instance instead of a
    plain object. (modules.rs + fetch.rs)

  • structuredClone(value) — global deep-clone function (JSON round-trip). Throws
    DataCloneError for non-serializable values (functions, circular refs), matching browser
    behaviour. (modules.rs)

  • navigator global — read-only object with userAgent ('3va/0.1 (QuickJS)'), language,
    languages, onLine, hardwareConcurrency, platform, cookieEnabled, doNotTrack.
    Required by many edge/worker detection checks. (modules.rs)

  • self === globalThisglobalThis.self is now set to globalThis, unblocking worker-
    compat code that checks typeof self !== 'undefined'. (modules.rs)

  • require('crypto') — real implementation — no longer a placeholder that returns random
    garbage. Now wraps globalThis.crypto (the Rust-backed SubtleCrypto). Added:
    getRandomValues, randomBytes, randomUUID (CSPRNG), createHash(alg) / createHmac(alg, key)
    (async .digest(enc) returning a Promise), timingSafeEqual(a, b), pbkdf2(...),
    constants. (modules.rs)

  • jsr: specifier supportrequire('jsr:@scope/name') and ESM import 'jsr:@scope/name'
    now resolve by stripping the jsr: prefix and looking up the package in node_modules/ as
    a regular scoped package. Use 3va install @scope/name --allow-net=jsr.io to install.
    (modules.rs)

  • http.createServer(handler) — real HTTP/1.1 serverrequire('http').createServer(handler)
    now binds a real TCP port and serves HTTP/1.1 connections. Backed by builtins/http_server.rs
    (Rust, async Tokio listener). Handler receives Node.js-compatible IncomingMessage (req.method,
    req.url, req.headers, req._body) and ServerResponse (res.writeHead(), res.write(),
    res.end(), res.setHeader(), res.statusCode). Requires --allow-net=<bind-host>. Handles
    multiple sequential requests per server instance.

    const http = require('http');
http.createServer((req, res) => {
  res.writeHead(200, { 'Content-Type': 'application/json' });
  res.end(JSON.stringify({ path: req.url }));
}).listen(3000, '0.0.0.0');

  • ML-KEM-768 (FIPS 203 / Kyber) — post-quantum Key Encapsulation Mechanism in vvva_crypto.
    MlKemKeypair::generate(), encapsulate(&ek), decapsulate(&dk, ct). Key sizes: EK=1184 B,
    DK=64 B (seed), CT=1088 B, SS=32 B. Wrong-key decapsulation returns a different shared secret
    (implicit rejection per spec). Hex serialization helpers included.
    (crates/crypto/src/kem.rs)

  • ML-DSA-65 (FIPS 204 / Dilithium) — post-quantum digital signature scheme in vvva_crypto.
    generate_signing_key(), sign(&sk, msg), verify(&vk, msg, &sig). Key sizes: SK=32 B (seed),
    VK=1952 B, sig=3309 B. Stateless — safe to reuse the same key for multiple messages.
    (crates/crypto/src/dsa.rs)

  • crypto.subtle (Web Crypto API) — full SubtleCrypto object on globalThis.crypto.subtle
    and require('crypto').subtle. Backed by builtins/crypto.rs (Rust) + JS for HKDF/PBKDF2.
    Supported operations: digest (SHA-1/224/256/384/512), generateKey (AES-GCM-128/256, AES-CBC,
    AES-CTR, HMAC), importKey/exportKey (raw + jwk), sign/verify (HMAC), encrypt/decrypt
    (AES-GCM), deriveBits/deriveKey (HKDF, PBKDF2). wrapKey/unwrapKey throw NotSupportedError.

  • response.formData()fetch responses now parse their body into a FormData object.
    Supports application/x-www-form-urlencoded (percent-decoding, +→space) and
    multipart/form-data (boundary splitting, Content-Disposition parsing, file parts become File
    objects). Any other Content-Type rejects with TypeError. (builtins/fetch.rs)

  • net / tls — real TCP/TLS socketsrequire('net') and require('tls') now return
    Rust-backed implementations. Socket class wraps TcpStream (plain) or TlsStream (TLS via
    native-tls). API: connect(), write(), end(), destroy(), setEncoding(), setTimeout(),
    on('data'|'end'|'error'|'close'), pipe().
    Requires --allow-net=<host>. (builtins/tcp.rs, modules.rs)

  • net.createServer(handler) — raw TCP serverrequire('net').createServer(handler) binds
    a real TCP port and calls handler(socket) for each incoming connection. Socket exposes
    write(data), end(), on('data'|'end'|'error'|'close'). Server exposes listen(port, host) and
    server.listening flag. Backed by __netListen / __netAcceptAsync in builtins/tcp.rs.
    Requires --allow-net=<bind-host>.

    const net = require('net');
net.createServer((socket) => {
  socket.write('hello\n');
  socket.end();
}).listen(4000, '127.0.0.1');

  • http2 clientrequire('http2').connect(authority) returns an Http2Session. Sessions
    expose request(headers) which returns an Http2Request that emits response, data, and end
    events. NGHTTP2 constants available as http2.constants. Backed by __fetchAsync; does not
    implement real HTTP/2 framing. (modules.rs)

  • --allow-env=VAR[,VAR,...] scoped environment access--allow-env now
    accepts an optional comma-delimited list of variable names.

    • --allow-env= (no value) → grants EnvAccess (all variables, previous behaviour).
    • --allow-env=NODE_ENV → grants EnvVar("NODE_ENV") only; all other variables
      are hidden from process.env.
    • --allow-env=NODE_ENV,PORT → grants only the two listed names.
    • Not providing the flag → process.env is an empty object {}.

  • Capability::EnvVar(String) — new capability variant for per-variable scoping.
    EnvAccess (all) covers any EnvVar(x) via caps_match; the reverse does not hold.

  • process.env permission enforcementprocess.env is now populated by
    filtering the host environment through PermissionState::check(&Capability::EnvVar(key))
    at injection time. Variables not granted are absent from the object regardless of
    whether they exist in the host environment. Previously all variables were exposed
    unconditionally even without --allow-env.

Fixed

  • Package extraction robustness (crates/pm/src/fetcher.rs) — PackageFetcher::extract
    no longer aborts the entire installation on the first entry error. Changes:

    • Entries with .. or absolute path components are rejected (path traversal).
    • Resolved output paths are verified to stay within the destination directory
      (prevents canonical-escape attacks).
    • EntryType::Symlink / EntryType::Link are always skipped (supply-chain risk).
    • Directory entries are handled with create_dir_all rather than unpack.
    • Per-entry IO errors are logged as WARN and skipped; extraction continues.
    • Fixes silent install failures for large packages that include native code
      (e.g. react-native, canvas, sharp) — these now extract correctly to
      node_modules/ instead of being left absent.

  • 3va run script arguments — arguments after -- are forwarded to the script via process.argv[2+]. Example: 3va run server.ts -- --port 3000 --dev. process.argv[0] = binary path, process.argv[1] = absolute script path, process.argv[2+] = script args.

  • 3va install multi-packageinstall now accepts multiple packages in one invocation: 3va install next react react-dom. Previously only one package was accepted.

  • --allow-net= without value — passing --allow-net= (empty value via =) grants network access to all hosts (equivalent to *). Same semantics for --allow-read= (all paths) and --allow-write= (all paths). Multiple flags can be combined: 3va run app.js --allow-net= --allow-read= --allow-write=.

  • process.cwd() — returns the real working directory. Previously undefined.

  • process.chdir() — no-op stub (sandboxed runtime does not change working directory).

  • process.nextTick(cb, ...args) — schedules cb in a microtask via Promise.resolve().then(), matching Node.js semantics. Multiple callbacks queued in the same tick are flushed in order.

  • process.hrtime.bigint() — returns BigInt(Date.now()) * 1_000_000n.

  • setImmediate / clearImmediate — exposed as globals; setImmediate is backed by setTimeout(fn, 0).

  • process.versions expanded — now includes node: "20.0.0", v8: "11.3.244.8-node.20", uv: "1.44.2", zlib: "1.2.13", openssl: "3.0.0", modules: "115". Packages that inspect process.versions.node no longer crash.

  • process.stdout.fd / process.stderr.fd — set to 1 and 2 respectively. isTTY set to false.

  • global / GLOBAL globalsglobalThis.global and globalThis.GLOBAL are now aliases for globalThis, unblocking packages that use global.xxx (e.g. node-polyfill-crypto).

  • require('module') shim — the built-in module package now exposes Module._resolveFilename(), Module._cache, Module._load(), Module.prototype.require(), Module.createRequire(), Module.createRequireFromPath(), Module.builtinModules, Module.isBuiltin(), and Module.syncBuiltinESMExports(). Required by Next.js require-hook.js and many other packages.

  • fs expanded — 15 new functions (sync + async + fs.promises):

    • existsSync(path) — now exposed on the fs object (was on globalThis only).
    • statSync(path) / stat(path[, cb]) — returns a stat object with isFile(), isDirectory(), isSymbolicLink(), size, mode, mtime, atime, ctime, birthtime, mtimeMs, atimeMs, ctimeMs.
    • lstatSync(path) / lstat(path[, cb]) — same as stat but does not follow symlinks.
    • accessSync(path[, mode]) / access(path[, mode][, cb]) — checks existence and sandbox read/write permissions. mode flags: fs.constants.F_OK (0), R_OK (4), W_OK (2), X_OK (1).
    • realpathSync(path) / realpath(path[, cb]) — calls std::fs::canonicalize.
    • unlinkSync(path) / unlink(path[, cb]) — removes a file.
    • renameSync(from, to) / rename(from, to[, cb]) — moves/renames.
    • copyFileSync(src, dest) / copyFile(src, dest[, cb]) — copies a file.
    • chmodSync(path, mode) / chmod(path, mode[, cb]) — changes Unix permissions.
    • symlinkSync(target, path) / symlink(target, path[, cb]) — creates a symlink.
    • appendFileSync(path, data) / appendFile(path, data[, cb]) — appends to a file.
    • createReadStream(path[, opts]) — returns an EventEmitter that emits data/end/error. Reads are lazy (fired via setTimeout(0) so the event loop can drain first).
    • createWriteStream(path[, opts]) — returns an object with write(chunk) and end([chunk]). Flushes the entire buffer to disk on end().
    • watch(path[, opts][, cb]) — returns an EventEmitter stub (no inotify; sandbox limitation).
    • readdirSync(path, { withFileTypes: true }) — returns Dirent-like objects with name, isFile(), isDirectory(), isSymbolicLink().
    • fs.constants{ F_OK: 0, R_OK: 4, W_OK: 2, X_OK: 1, COPYFILE_EXCL: 1 }.
    • fs.promises.* — all async methods mirrored (readFile, writeFile, readdir, mkdir, rm, stat, lstat, access, realpath, rename, unlink, copyFile, chmod, symlink, appendFile).
    • require('fs') and require('node:fs') now return the full expanded object; require('fs/promises') returns fs.promises.

  • JSX transform — the Oxc transpiler now supports JSX via the Classic runtime (React.createElement):

    • .jsx / .tsx files: always transformed.
    • .ts / .mts / .cts files: TypeScript strip only (no JSX).
    • .js / .mjs / unknown extensions: auto-detection via looks_like_jsx() heuristic — if the source contains <Tag or </Tag, JSX transform is applied automatically.
    • JSX fragments use React.Fragment.
    • transpile_jsx(source) and transpile_js(source) are now public API in vvva_js::transpiler.
    • looks_like_jsx(source) -> bool is public for callers that want to pre-check.

  • Flow type strippingtranspile_js() includes a two-pass Flow fallback:

    1. Strips @flow, @format, import type, import typeof pragmas.
    2. If Oxc still fails, falls back to strip_inline_flow_types() which removes : Type annotations from const/let/var declarations and function parameters at character level (no regex). Enables basic Flow-annotated .js files from React Native packages to be loaded via require().

Changed

  • --allow-read, --allow-net, --allow-write in run, install, update, reinstall now use require_equals = true and value_delimiter = ',':
    • Old: --allow-net registry.npmjs.org (space-separated, consumed next positional arg as value — broken with --allow-net followed by FILE).
    • New: --allow-net=registry.npmjs.org or --allow-net=host1,host2 (equals sign required; comma-delimited list; omitting value after = grants wildcard).
  • process.argv construction moved from inject_process (captured all raw CLI args) to eval_file / eval_file_with_args:
    • process.argv[0] = path to the 3va binary.
    • process.argv[1] = absolute path to the script being run (set just before execution).
    • process.argv[2+] = script arguments passed after -- (set by eval_file_with_args).
  • 3va install package field renamed from Option<String> to Vec<String> (packages). Backward-compatible: omitting all packages still installs from manifest.

Fixed

  • --allow-net= followed immediately by a positional argument (<FILE>) no longer silently consumed the file path as the network host value.
  • --allow-read= and --allow-write= combining multiple empty flags in one command (--allow-net= --allow-read= --allow-write=) no longer errors with "a value is required".
  • process.argv no longer duplicated script args when eval_file_with_args was called (the raw std::env::args() snapshot included the -- args, causing double-appending).
  • fs.statSync().isFile() and fs.statSync().isDirectory() returned the method function body instead of a boolean (the boolean values from JSON were overwritten before being captured in the closure). Fixed by saving raw booleans before creating method functions.

Added (previous session)

  • 3va dev — full development server with HMR, SPA fallback, static serving.

  • 3va audit --secrets — Phase 3 audit for hardcoded secrets in dependencies.

  • 3va audit --json — machine-readable JSON output.

  • 3va sandbox — interactive REPL with multi-line support, session commands, TTY detection.

  • 3va test --watch / --coverage / --update-snapshots.

  • 3va bundle --split / --minify / --source-map.

  • Full ESM support with EsmResolver and EsmLoader.

  • 3va update with per-package registry tracking.

  • 3va dev — full development server:

    • Flags --port <N> (default 3000), --host <H> (default 127.0.0.1), --open, --public-dir <D>.
    • HMR via Server-Sent Events at the /__hmr endpoint.
    • HMR client script injected automatically before </body> in all served HTML.
    • Static file serving with correct MIME types (15 supported types).
    • SPA fallback: unknown routes serve public/index.html.
    • Automatic rebuild with 300 ms debounce when detecting changes in .js, .ts, .jsx, .tsx files.
    • Built-in development page when public/index.html does not exist.

  • 3va audit --secrets — Phase 3 audit: detection of hardcoded secrets in dependencies (AWS keys, GitHub tokens, PEM private keys, JWT tokens, Stripe keys and other common patterns) via SecretsScanner.

  • 3va audit --json — machine-readable output with { passed, phases: { malware, osv, secrets } } structure; completely suppresses human-readable output.

  • audit_packages_silent() in vvva_pm — audit variant without console output, used internally in --json mode.

  • 3va sandbox — full interactive REPL:

    • Multi-line support with balanced bracket detection (parentheses, brackets, braces).
    • Session commands: .help, .exit, .clear, .allow-read <path>, .allow-net <host>, .permissions.
    • Node.js-style output formatting: objects as JSON, explicit undefined for statements.
    • TTY detection: in pipes and CI environments (stdin non-TTY), exits immediately without blocking.

  • 3va test --watch — automatically re-runs the suite when detecting file changes.

  • 3va test --coverage — line and branch coverage report upon test completion.

  • 3va test --update-snapshots / -u — overwrites existing snapshots with current values.

  • 3va bundle --split — code splitting; --minify — minification; --source-map — source map generation.

  • Full ESM: EsmResolver and EsmLoader in vvva_js::esm; import/export support with relative paths, re-exports and TypeScript modules.

  • Full async/await and Promise chain support via the execute_pending_job microtask loop.

  • Bundler watch mode (start_watch_mode) with real notify watcher (previously was a stub without implementation).

  • describe blocks and snapshot support (toMatchSnapshot) in the test runner.

  • list_granted() in PermissionState — exposes the list of capabilities granted in the current session.

  • 3va update subcommand with per-package registry tracking.

  • registry field in 3va-lock.json (in packages and dependencies) to record the origin of each installed package.

  • Registry preservation logic in the lockfile upon regeneration: registries of already installed packages are not lost when installing new packages.

  • --allow-net validation in 3va update: the CLI inspects the lockfile, groups packages by registry and displays the exact command to run if any authorized host is missing.

  • Multi-registry support in the same project (e.g., axios from registry.npmjs.org and @std/path from jsr.io).

  • Methods registry_for(), registries_needed() and set_registry() in Lockfile (crates/pm/src/lockfile.rs).

  • 11 integration tests in crates/test/tests/runner_integration.rs.

  • 12 unit tests in crates/pm/src/auditor.rs.

  • 28 tests in crates/js/tests/pipeline.rs (ESM, async/await, TypeScript, permissions).

  • Integration suite scripts/integration_tests.sh: 58 tests in 12 phases (100% passing).

Fixed

  • is_esm_source() stopped scanning upon finding the first line that was not an import; now scans the entire file with block comment tracking.
  • Snapshot permission failed when the test file was in /tmp/ (TempDir); now FileRead/FileWrite is granted to the test file's parent directory.
  • audit --json emitted human-readable output before JSON because the malware scanner wrote directly to stdout; resolved via audit_packages_silent().
  • run_audit_human returned before reaching Phase 3 if Phase 1 (malware) or Phase 2 (OSV) produced an error; now all three phases are resilient to individual failures and always execute independently.

[0.1.0-dev] - 2026-05-19

Active development version. Not yet published as a stable release.

Added

Package Manager (crates/pm)

  • 3va install <package>[@<version>] --allow-net=<registry-host> — secure installation from npm, Yarn or JSR.
  • 3va reinstall <package> --allow-net=<registry-host> — forced reinstallation.
  • Automatic registry derivation from the host in --allow-net (no separate --registry flag needed).
  • Support for three integrated registries: registry.npmjs.org, registry.yarnpkg.com, jsr.io.
  • Support for scoped packages (@scope/name, mandatory in JSR).
  • Package existence verification before installing.
  • Version resolution: if not specified, uses dist-tags.latest; if the requested version does not exist, shows the 5 closest by semver distance.
  • Version suggestions in name@version format.
  • Security gate: any attempt to install without --allow-net shows an explanatory error and suggests the correct command — no silent network calls.
  • Already installed package detection: prevents accidental reinstallation and suggests reinstall.
  • package.json and 3va-lock.json update after each successful installation.
  • Signature verification via SignatureVerifier (SHA-256/SHA-512).
  • JSR API: /api/scopes/{scope}/packages/{name}/versions endpoint.
  • Semver distance algorithm: score = major × 1_000_000 + minor × 1_000 + patch.

CLI (crates/cli)

  • Subcommands: run, install, reinstall, update, dev, bundle, test, audit, doctor, sandbox.
  • Global --accessible flag for accessible mode (no colors or animations, EN 301 549 compliant).
  • Granular permissions in run: --allow-read, --allow-write, --allow-net, --allow-env, --allow-child-process.
  • Interactive permission prompt enabled by default in run.

JavaScript Engine (crates/js)

  • QuickJS integration via rquickjs.
  • Automatic TypeScript transpilation when executing .ts.
  • CommonJS-compatible module system.
  • Global APIs: console, fetch, fs (restricted by permissions), timers.

Bundler (crates/bundler)

  • 3va bundle <input> --output <output> — application bundling.
  • TypeScript transpilation in the bundle process.

Test Runner (crates/test)

  • 3va test [paths] — test suite execution.
  • Automatic discovery of *.test.ts, *.test.js, *.spec.* files.

Security

  • SignatureVerifier: SHA-256 and SHA-512 hash calculation and verification of files.
  • MalwareScanner: static analysis of dependencies.
  • AuditLogger: sensitive operation logging.
  • Interactive prompting for runtime permission requests.
  • Post-install scripts disabled by default.

Changed

  • The --registry flag was removed from the design. The registry is determined exclusively by the authorized host in --allow-net — consistent with 3va's capability model.

Architecture

  • Cargo workspace with crates: vvva_core, vvva_cli, vvva_permissions, vvva_js, vvva_pm, vvva_bundler, vvva_test.
  • Rust edition 2024.
  • Async runtime: Tokio.

Entry format

Each version follows the structure:

## [X.Y.Z] - YYYY-MM-DD

### Added        — new functionality
### Changed      — changes in existing functionality
### Deprecated   — functionality to be removed in future versions
### Removed      — removed functionality
### Fixed        — bug fixes
### Security     — vulnerability patches (reference CVE if applicable)

Compliant with Keep a Changelog 1.0.0 and SemVer 2.0.0.

Assets 2
Loading