alee/fieldwitness
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
FieldWitness -- an attestation and chain of custody toolkit.
21 Commits 1 Branch 2 Tags 39 MiB
Python 79.4%
HTML 16%
JavaScript 4.1%
Dockerfile 0.2%
Shell 0.2%
fb0cc3e39d
Go to file
Aaron D. Lee fb0cc3e39d Implement 14 power-user feature requests for field deployment 
Critical:
- FR-01: Chain verification now supports key rotation via signed rotation
  records (soosef/key-rotation-v1 content type). Old single-signer
  invariant replaced with authorized-signers set.
- FR-02: Carrier images stripped of EXIF metadata by default before
  steganographic encoding (strip_metadata=True). Prevents source
  location/device leakage.

High priority:
- FR-03: Session timeout (default 15min) + secure cookie flags
  (HttpOnly, SameSite=Strict, Secure when HTTPS)
- FR-04: CSRF protection via Flask-WTF on all POST forms. Killswitch
  now requires password re-authentication.
- FR-05: Collaborator trust store — trust_key(), get_trusted_keys(),
  resolve_attestor_name(), untrust_key() in KeystoreManager.
- FR-06: Production WSGI server (Waitress) by default, Flask dev
  server only with --debug flag.
- FR-07: Dead man's switch sends warning during grace period via
  local file + optional webhook before auto-purge.

Medium:
- FR-08: Geofence get_current_location() via gpsd for --here support.
- FR-09: Batch attestation endpoint (/attest/batch) with SHA-256
  dedup and per-file status reporting.
- FR-10: Key backup tracking with last_backup_info() and
  is_backup_overdue() + backup_reminder_days config.
- FR-11: Verification receipts signed with instance Ed25519 key
  (schema_version bumped to 2).
- FR-12: Login rate limiting with configurable lockout (5 attempts,
  15 min default).

Nice-to-have:
- FR-13: Unified `soosef status` pre-flight command showing identity,
  channel key, deadman, geofence, chain, and backup status.
- FR-14: `soosef chain export` produces ZIP with JSON manifest,
  public key, and raw chain.bin for legal discovery.

Tests: 157 passed, 1 skipped, 1 pre-existing flaky test.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
2026-04-01 19:35:36 -04:00
.gitea/workflows Disable test job in CI until stegasoo/verisoo are migrated 2026-04-01 18:38:14 -04:00
docker Fix Docker healthcheck hanging gunicorn workers 2026-03-31 19:46:04 -04:00
frontends Implement 14 power-user feature requests for field deployment 2026-04-01 19:35:36 -04:00
src/soosef Implement 14 power-user feature requests for field deployment 2026-04-01 19:35:36 -04:00
test_data Consolidate stegasoo and verisoo into soosef monorepo 2026-04-01 19:06:14 -04:00
tests Implement 14 power-user feature requests for field deployment 2026-04-01 19:35:36 -04:00
.gitignore Add vendor assets, fix CLI imports, make web UI bootable 2026-03-31 14:48:18 -04:00
CLAUDE.md Initial repo skeleton with pyproject.toml and project guide 2026-03-31 14:21:30 -04:00
pyproject.toml Implement 14 power-user feature requests for field deployment 2026-04-01 19:35:36 -04:00
README.md Add vendor assets, fix CLI imports, make web UI bootable 2026-03-31 14:48:18 -04:00

README.md

SooSeF — Soo Security Fieldkit

Offline-first security toolkit for journalists, NGOs, and at-risk organizations.

Part of the Soo Suite:

  • Stegasoo — hide encrypted messages in media (steganography)
  • Verisoo — prove image provenance and authenticity (attestation)
  • SooSeF — unified fieldkit with killswitch, dead man's switch, and key management

Status

Pre-alpha. Phase 1 scaffolding complete.

Install (development)

pip install -e /path/to/stegasoo[web,dct,audio,cli]
pip install -e /path/to/verisoo[cli]
pip install -e ".[web,cli]"

Quick Start

soosef init      # Generate identity + channel key, create ~/.soosef/
soosef serve     # Start the web UI