💾 Install

Stable releases are published on https://www.npmjs.com/package/zenroom that have a slow pace release schedule that you can install with

npm install zenroom
# or using yarn
yarn add zenroom
# or using pnpm
pnpm add zenroom
# or using bun
bun add zenroom

🎮 Usage

The bindings are composed of two main functions:

• zencode_exec to execute Zencode. To learn more about zencode syntax look here
• zenroom_exec to execute our special flavor of Lua enhanced with Zenroom's special effects

Both of this functions accepts a mandatory SCRIPT to be executed and some optional parameters:

• DATA
• KEYS
• EXTRA
• CONTEXT
• CONF

All in form of strings. This means that if you want to pass a JSON you have to JSON.stringify it before.

Both functions return a Promise.

To start using the zenroom vm just

import { zenroom_exec, zencode_exec, introspection } from "zenroom";
// or if you don't use >ES6
// const { zenroom_exec, zencode_exec } = require('zenroom')

// Zencode: generate a random array. This script takes no extra input

const zencodeRandom = `
  Given nothing
  When I create the random array with '16' elements each of '32' bits
  Then print all data
`;

zencode_exec(zencodeRandom)
  .then((result) => {
    console.log(result);
  })
  .catch((error) => {
    console.error(error);
  });

// Zencode: encrypt a message.
// This script takes the options' object as the second parameter: you can include data and/or keys as input.
// The "config" parameter is also optional.

const zencodeEncrypt = `
  Scenario 'ecdh': Encrypt a message with the password
  Given that I have a 'string' named 'password'
  Given that I have a 'string' named 'message'
  Given that I have a 'string' named 'extra'
  When I append 'extra' to 'message'
  When I encrypt the secret message 'message' with 'password'
  Then print the 'secret message'`;

const zenKeys = `
  {
    "password": "myVerySecretPassword"
  }
`;

const zenData = `
  {
      "message": "HELLO WORLD"
  }
`;

const zenExtra = `
  {
      "extra": "!!!"
  }
`;

zencode_exec(zencodeEncrypt, {
  data: zenData,
  keys: zenKeys,
  extra: zenExtra,
  conf: `debug=1`,
})
  .then((result) => {
    console.log(result);
  })
  .catch((error) => {
    console.error(error);
  });

// Lua Hello World!

const lua = `print("Hello World!")`;
zenroom_exec(lua)
  .then((result) => {
    console.log(result);
  })
  .catch((error) => {
    console.error(error);
  });

// to pass the optional parameters you pass an object literal eg.

try {
  const result = await zenroom_exec(`print(DATA..KEYS..EXTRA..CONTEXT)`, {
    data: "Hello ",
    keys: "from ",
    extra: "Zenroom ",
    context: "developers",
    conf: `debug=1`,
  });
  console.log(result); // => Hello from Zenroom developers
} catch (e) {
  console.error(e);
}

// code inspection is done via the `zencode_valid_input` primitive function or by a utility `introspect`

const introspection = await introspection(
  `Given I have a 'string' named 'missing'
  Then print the codec`
);
console.log(introspection); // => an object described as https://dev.zenroom.org/#/pages/how-to-embed?id=input-validation

😍 Acknowledgements

Copyright (C) 2018-2025 by Dyne.org foundation, Amsterdam

Designed, written and maintained by Puria Nafisi Azizi.

This project is receiving funding from the European Union’s Horizon 2020 research and innovation programme under grant agreement nr. 732546 (DECODE).

👤 Contributing

Please first take a look at the Dyne.org - Contributor License Agreement then

1. FORK IT
2. Create your feature branch git checkout -b feature/branch
3. Commit your changes git commit -am 'Add some fooBar'
4. Push to the branch git push origin feature/branch
5. Create a new Pull Request
6. Thank you

💼 License

  Zenroom js - a javascript wrapper of zenroom
  Copyright (c) 2018-2025 Dyne.org foundation, Amsterdam

  This program is free software: you can redistribute it and/or modify
  it under the terms of the GNU Affero General Public License as
  published by the Free Software Foundation, either version 3 of the
  License, or (at your option) any later version.

  This program is distributed in the hope that it will be useful,
  but WITHOUT ANY WARRANTY; without even the implied warranty of
  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
  GNU Affero General Public License for more details.

  You should have received a copy of the GNU Affero General Public License
  along with this program.  If not, see <http://www.gnu.org/licenses/>.

Zenroom ChangeLog

In this journal are noted the most visible features implemented in each major version and the early history of Zenroom comprising two Proof of Concept releases, several Alpha and Beta releases leading up to the v.1 release series and subsequent.

Starting with the first stable releases series we adopt semantic versioning tagged on the Git history, which accounts for a more complete list of changes operated in Zenroom.

Each new stable release series breaks compatibility with the previous adopting breaking changes that allow us to implement new advanced features. The last development release of stable series receives Long Term Support (LTS): it is maintained in a branch named 'v2', 'v3' etc. and its most recent tagged version is listed here and found in Git logs.

Binaries and source-code of recent stable release series are available on https://files.dyne.org/zenroom .

Nov 2023: Stable release series v4 is latest

Development plans include the implementation of new schemes like SD-JWT and support for the EUDI ARF specifications. Also debugging facilities will be improved with step-execution and Session Portability allowing to export and re-import a Zencode HEAP and STACK at any time between different VMs of the same version. This will also lead to VM-secured multi-party computation features.

We are open for more engaging use-cases, get in touch!

May 2023: Stable release series v3 up to LTS 3.23.4

Consolidated grammar for the Zencode language, with the addition of branching and for-each cycling.

Stable support for Quantum-proof cryptography (both signatures and shared keys: dilithium, kyber and NTRU). Also new signatures available: EDDSA, deterministic ECDSA signatures and BBS+ zero-knowledge proof. The W3C scenario now supports all operations needed by our Distributed Identity implementation at DID.dyne.org .

Improvements include a code refactoring to ease maintenance, more documentation, several bugfixes and a 25% performance improvement on most Zencode operations and smaller binary payloads. Lua is updated to v5.4.

Language bindings are simplified using a syscall to execute a portable and secure zencode-exec binary provided for all platforms and error messaging has been greatly improved including also JSON formatting for logs.

Mar 2022: Stable release series v2 up to LTS 2.22.1

Full implementation and documentation of the Zencode language.

Native support of Bitcoin (SECP256K1) and ETH/web3 (BLS381). Language bindings for NodeJS, Python3, Rust and Golang. Streamlined CI builds for iOS, Android and Cortex-ARM chips. Initial port to run on any native Lua >= 5.1 virtual machine. Zencode data manipulation, arithmetics and complex operations. REFLOW crypto scenario for ZKP and digital product passport. Several improvements to stability and portability.

Sep 2019 Stable release series v1 (EOL)

Final refactoring and code cleanup with many optimizations.

Complete call API and full Zencode syntax for simple and coconut scenarios. Rule configurability for input/output (JSON or CBOR) and semantic versioning contract checks. Fully deterministic random engine. Several improvements to the error reporting output and fixes to the iOS native library. Bindings included in source, improved and released on pypi and npm. Documentation included and online at dev.zenroom.org

Beta release 0.9 (March 2019)

Completed high-level language implementation of Zencode and underlying zero-knowledge proof credential system Coconut, Elgamal and homomorphic encryption. Overall improvements to primitives and to AES-GCM crypto. Full implementation of authentication and secure petition signing. Several bug fixes and improvements targeting reliability, error reporting and portability. Removed many unused libraries, Schema refactoring. Working builds for python2/3, nodejs/wasm, golang, Android and iOS. Native integration in the mobile react-native app for DDDC petitions.

Alpha release 0.8.1 (November 2018)

Several fixes and improvements to the arithmetics and language constructions for EC and PAIR operations, deeper testing with Coconut's work in progress implementation lead to several fixes. New working targets for Go and python 2/3 bindings and fixes to existing iOS and Android. Overall cleanup of the build system and first stab to improve the security when executing malicious code. Working examples now include an implicit certificate scheme (ECQV) and a working ElGamal encryption scheme inside Coconut's implementation.

Alpha release 0.8.0 (October 2018)

New Elliptic Curve Arithmetics (ECP2) with Twisted Curve Pairings (Miller-Loop). Hamming distance measurements on OCTET (bitwise). Example of ECP based ElGamal implementation of omomorphic encryption over integers for petition and tally, with verifications. Default encryption now AES-GCM with AEAD authenticated headers, examples using a public random IV. Support for Javascript's React-Native. Language bindings for Go lang, Python version 2 and 3. Zenroom virtual machine language design improvements to build and documentation, object introspection.

Alpha release 0.7.1 (September 2018)

Fixes to all Javascript builds.

Alpha release 0.7.0 (August 2018)

Adopted AES-GCM as default encryption method, downgraded CBC as weak. Fixes to the exposed API for complete usage in Zenroom-studio. Added seccomp kernel-level protection and insured unikernel functionality with provable isolation from network and filesystem access. Added language bindings, a Python module is now provided.

Switched to BLS383 curve for ECP operations and upgraded Milagro to version 4.12.0. Implemented arithmetic operations on BIG numbers and improved the language design around ECP, ECDH and OCTET. Exposed and improved objects for HASH and RNG. Added curves GOLDILOCKS and SECP256K1 for use in ECDH and Base58 for OCTET. Added support for MSGPACK binary serialization format.

Updated tests and examples, added new simple implementation for ElGamal with ZKP using ECP primitives. Started ECP2 twisted curve implementation. Improved build system; added python, java and esp32 targets. Updated API documentation.

Alpha release 0.6.0 (June 2018)

Implemented arithmetic operations on elliptic curve points (ECP) as cryptographic primitives to implement new schemes.

Modularised ECDH class/factory implementation to support multiple curve types.

Support for multiple memory managers (still not fully reentrant), improved use of memory (and reflexivity), better constructors in scripts.

Further progress on syntax in relation to use-cases (DECODE D3.5).

Abstract Syntax Tree parsing of smart rules and rendering to JSON (based on lpeglabels and lua-parser).

Exposed more public calls on zenroom.h for usage as a library (stdout/stderr to memory).

Added contributed scripts for iOS, Android and Go shared builds.

Alpha release 0.5.0 (April 2018)

Fully adopted Milagro-crypto-C as underlying crypto library, abandoning luazen at least for now. Refactored the API and language approach to adopt a more object-oriented posture towards first-class citizen data objects (octets) and keyrings. Full ECDH implementation with support for multiple curve types.

Direct-syntax interpreter upgraded to Lua 5.3; dropped dependency from lua_sandbox effectively cleaning up large portions of code.

Improved support for javascript; implemented a cryptographically secure random generator linked to different RNG functions provided by native platforms. Added build targets for Android and iOS, improved JS support both for NodeJS and WASM targets.

Adopted an embedded memory-manager (umm) optionally enabled at runtime, achieving significant speed improvements, reduction of resources used and full control on memory allocation; adopted a function pointer mechanism to easily include different memory managers in the future.

Updated documentation accordingly with more examples and tests. Half-baked RSA implementation may be abandoned in the future unless use-cases arise.

Alpha release 0.4 (March 2018)

Major improvements to standard Lua direct-syntax compatibility, port to emscripten, osx and win targets. Documentation using LDoc and website. Support for cjson and other embedded extensions. First binary release, enters ALPHA stage.

Prototype release 0.3 (February 2018)

Build fixes for various architecture targets. Milagro integration, test suites, continuous integration setup.

Proof of Concept release 0.2 (December 2017)

Whitepaper and improved Lua support. Adopted luazen in place of luanacha.

Proof of Concept release 0.1 (November 2017)

Proof of concept based on lua_sandbox