relicario

alee/relicario

Fork 0

Commit Graph

Author	SHA1	Message	Date
adlee-was-taken	b655024320	docs(plan,spec): apply re-verification fixes (5 high + 5 med + 6 low) Re-verification gate cleared all original criticals; these close the residual defects the reassembly leaked back in: HIGH: - H-D1: add ssh-key dep to relicario-wasm; two-step PrivateKey::from; drop false note - H-D2: org_open_with_registered_device unwraps inside WASM (DEVICE_STATE seed, session-only); device private key never crosses to JS - H-D3: extension grant-filters the org manifest (members.json → member grants → filter_for_member) to honor the spec parity promise - H-C1: hook diffs {commit}^:members.json, rejects owner/admin escalation unless signer is Owner; adds signed-commit hook test - H-B4: reorder B4 tests to "org init --dir <path>" (subcommand-scoped global) MEDIUM: trash=item-delete + item-restore vocabulary reconciled; real transfer-ownership (demote caller unless --keep-owner); delete-org local-only caveat in spec; pinned RFC8032 X25519 KAT. LOW: org init honors RELICARIO_ORG_DIR; D3 VaultEntry type pinned; static_secrets in File Map/Tech Stack; --format <table\|json>; hook slug-in-collections check; spec-mandated integration tests (TAMPERED, audit JSON, rotate race, remove→rotate decrypt-denial). Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>	2026-06-19 19:54:04 -04:00
adlee-was-taken	21ed8d83b8	docs(spec): revise org-vault design per adversarial review Path-scoped collection storage (items/<slug>/<id>.enc) for hook-enforceable writes; signature-verifying pre-receive hook on every commit; audit actor from verified signer (trailers advisory + TAMPERED flag); org item CRUD in scope; rotate-key re-encrypts all items; transfer/delete-org; extension parity in phase 1; living-docs impact section. Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>	2026-06-19 18:50:21 -04:00
adlee-was-taken	2a6f6f1307	docs(spec): enterprise org vault design — git-native multi-user org Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>	2026-06-06 21:06:34 -04:00

Author

SHA1

Message

Date

adlee-was-taken

b655024320

docs(plan,spec): apply re-verification fixes (5 high + 5 med + 6 low)

Re-verification gate cleared all original criticals; these close the residual
defects the reassembly leaked back in:

HIGH:
- H-D1: add ssh-key dep to relicario-wasm; two-step PrivateKey::from; drop false note
- H-D2: org_open_with_registered_device unwraps inside WASM (DEVICE_STATE seed,
  session-only); device private key never crosses to JS
- H-D3: extension grant-filters the org manifest (members.json → member grants →
  filter_for_member) to honor the spec parity promise
- H-C1: hook diffs {commit}^:members.json, rejects owner/admin escalation unless
  signer is Owner; adds signed-commit hook test
- H-B4: reorder B4 tests to "org init --dir <path>" (subcommand-scoped global)

MEDIUM: trash=item-delete + item-restore vocabulary reconciled; real
transfer-ownership (demote caller unless --keep-owner); delete-org local-only
caveat in spec; pinned RFC8032 X25519 KAT.

LOW: org init honors RELICARIO_ORG_DIR; D3 VaultEntry type pinned; static_secrets
in File Map/Tech Stack; --format <table|json>; hook slug-in-collections check;
spec-mandated integration tests (TAMPERED, audit JSON, rotate race, remove→rotate
decrypt-denial).

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>

2026-06-19 19:54:04 -04:00

adlee-was-taken

21ed8d83b8

docs(spec): revise org-vault design per adversarial review

Path-scoped collection storage (items/<slug>/<id>.enc) for hook-enforceable
writes; signature-verifying pre-receive hook on every commit; audit actor from
verified signer (trailers advisory + TAMPERED flag); org item CRUD in scope;
rotate-key re-encrypts all items; transfer/delete-org; extension parity in
phase 1; living-docs impact section.

Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>

2026-06-19 18:50:21 -04:00

adlee-was-taken

2a6f6f1307

docs(spec): enterprise org vault design — git-native multi-user org

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

2026-06-06 21:06:34 -04:00

3 Commits