(xpost /r/crypto) I'm writing an open source digital signatures library. Advice and criticism welcome

<p>Hi,</p> <p>I am developing <a href="https://github.com/gjvnq/libICP#libicp" rel="nofollow">libICP</a>, a golang library for creating and verifying CAdES (CMS Advanced Electronic Signatures) according to brazilian legal standards (which seem to be largely IETF and EU/ETSI standards with minor modifications).</p> <p>This is my first real cryptographic project so any criticism and advice are welcome.</p> <p>A few key points:</p> <ul> <li>I&#39;m <em>not</em> writing my own implementations for the cryptographic functions themselves. I&#39;m using the standard golang libraries for that.</li> <li>I&#39;m trying to make sure all important code is covered with tests.</li> <li>I&#39;m also creating a GUI for Linux, macOS and Windows so common people can easily use CAdES: <a href="https://github.com/gjvnq/OpenICP-BR" rel="nofollow">https://github.com/gjvnq/OpenICP-BR</a></li> </ul>