补充安全编码库匹配规则

补充浏览器端安全、编码和加密相关库的本地资源匹配规则。

新增规则限定在明确发行文件名和包目录，避免使用 jwt、crypto 等宽泛短词触发。

将版本号提升到 1.3.20，作为本轮规则补充的发布节点。

Author: setube

package.json

@@ -1,7 +1,7 @@
 {
   "name": "stackprism",
   "private": true,
-  "version": "1.3.19",
+  "version": "1.3.20",
   "type": "module",
   "description": "StackPrism 用于检测网页前端、后端、CDN、SaaS、广告营销、统计、登录、支付、网站程序和主题模板线索。",
   "scripts": {

public/rules/page/frontend-local-libraries.json

@@ -242,6 +242,56 @@
               "(?:^|/)crypto-js/.+\\.js(?:[?#][^\\s\"'<>]*)?(?:[\"'<>\\s]|$)"
             ]
           },
+          {
+            "name": "jwt-decode",
+            "patterns": [
+              "(?:^|/)jwt-decode(?:\\.umd)?(?:\\.min)?\\.js(?:[?#][^\\s\"'<>]*)?(?:[\"'<>\\s]|$)",
+              "(?:^|/)jwt-decode(?:@[^/\\s\"'<>]+)?/.+\\.(?:m?js|cjs)(?:[?#][^\\s\"'<>]*)?(?:[\"'<>\\s]|$)"
+            ]
+          },
+          {
+            "name": "jsrsasign",
+            "patterns": [
+              "(?:^|/)jsrsasign(?:-all)?(?:\\.min)?\\.js(?:[?#][^\\s\"'<>]*)?(?:[\"'<>\\s]|$)",
+              "(?:^|/)jsrsasign(?:@[^/\\s\"'<>]+)?/.+\\.js(?:[?#][^\\s\"'<>]*)?(?:[\"'<>\\s]|$)"
+            ]
+          },
+          {
+            "name": "forge",
+            "patterns": [
+              "(?:^|/)forge(?:\\.all)?(?:\\.min)?\\.js(?:[?#][^\\s\"'<>]*)?(?:[\"'<>\\s]|$)",
+              "(?:^|/)node-forge(?:@[^/\\s\"'<>]+)?/.+\\.js(?:[?#][^\\s\"'<>]*)?(?:[\"'<>\\s]|$)"
+            ]
+          },
+          {
+            "name": "bcryptjs",
+            "patterns": [
+              "(?:^|/)bcrypt(?:\\.min)?\\.js(?:[?#][^\\s\"'<>]*)?(?:[\"'<>\\s]|$)",
+              "(?:^|/)bcryptjs(?:@[^/\\s\"'<>]+)?/.+\\.js(?:[?#][^\\s\"'<>]*)?(?:[\"'<>\\s]|$)"
+            ]
+          },
+          {
+            "name": "argon2-browser",
+            "patterns": [
+              "(?:^|/)argon2(?:\\.bundled)?(?:\\.min)?\\.js(?:[?#][^\\s\"'<>]*)?(?:[\"'<>\\s]|$)",
+              "(?:^|/)argon2-browser(?:@[^/\\s\"'<>]+)?/.+\\.(?:js|wasm)(?:[?#][^\\s\"'<>]*)?(?:[\"'<>\\s]|$)"
+            ]
+          },
+          {
+            "name": "tweetnacl",
+            "patterns": [
+              "(?:^|/)nacl(?:-fast)?(?:\\.min)?\\.js(?:[?#][^\\s\"'<>]*)?(?:[\"'<>\\s]|$)",
+              "(?:^|/)tweetnacl(?:@[^/\\s\"'<>]+)?/.+\\.js(?:[?#][^\\s\"'<>]*)?(?:[\"'<>\\s]|$)"
+            ]
+          },
+          {
+            "name": "libsodium-wrappers",
+            "patterns": [
+              "(?:^|/)sodium(?:\\.min)?\\.js(?:[?#][^\\s\"'<>]*)?(?:[\"'<>\\s]|$)",
+              "(?:^|/)libsodium-wrappers(?:@[^/\\s\"'<>]+)?/.+\\.(?:js|wasm)(?:[?#][^\\s\"'<>]*)?(?:[\"'<>\\s]|$)",
+              "(?:^|/)libsodium(?:@[^/\\s\"'<>]+)?/.+\\.(?:js|wasm)(?:[?#][^\\s\"'<>]*)?(?:[\"'<>\\s]|$)"
+            ]
+          },
           {
             "name": "blueimp-md5",
             "patterns": [
@@ -866,6 +916,21 @@
               "(?:^|/)dompurify/.+\\.js(?:[?#][^\\s\"'<>]*)?(?:[\"'<>\\s]|$)"
             ]
           },
+          {
+            "name": "js-xss",
+            "patterns": [
+              "(?:^|/)xss(?:\\.min)?\\.js(?:[?#][^\\s\"'<>]*)?(?:[\"'<>\\s]|$)",
+              "(?:^|/)js-xss(?:@[^/\\s\"'<>]+)?/.+\\.js(?:[?#][^\\s\"'<>]*)?(?:[\"'<>\\s]|$)"
+            ]
+          },
+          {
+            "name": "sanitize-html",
+            "patterns": ["(?:^|/)sanitize-html(?:@[^/\\s\"'<>]+)?/.+\\.js(?:[?#][^\\s\"'<>]*)?(?:[\"'<>\\s]|$)"]
+          },
+          {
+            "name": "he",
+            "patterns": ["(?:^|/)he(?:@[^/\\s\"'<>]+)?/.+\\.js(?:[?#][^\\s\"'<>]*)?(?:[\"'<>\\s]|$)"]
+          },
           {
             "name": "PapaParse",
             "patterns": [