alee/relicario
1
0
Fork 0
Code Issues Pull Requests 5 Actions Packages Projects Releases Wiki Activity
Files
3871da383d0bb0e09a8aae0495ee11992f224d09
relicario/ROADMAP.md
adlee-was-taken 0cd417ded7 docs(org): complete A5 living-docs sweep (item CRUD merged) + dead_code cleanup 
Extends the A5 pre-stage now that dev-b's full B-stream (item CRUD + all 19
org subcommands) merged to main (7392795). Living docs:
- FORMATS/CRYPTO/SECURITY/DESIGN: flip the item-CRUD "pending Dev-B" markers to
  shipped; SECURITY audit vocabulary moves item-* actions to live.
- crates/relicario-cli/ARCHITECTURE.md: full 19-subcommand surface (12 admin +
  7 item CRUD), accurate OrgAddKind scope (Login/SecureNote/Identity).
- STATUS.md: enterprise-org-vault landed section (merged 7392795) + tracked
  follow-ups + honest known-limitations; correct spec citation.
- ROADMAP.md: backend-complete row + phase-2 follow-ups.
- CHANGELOG.md: finalize the enterprise-org-vault Unreleased section (item CRUD
  into Added; Card/Key/Document/Totp + extension + phase-2 into Deferred).

Code (PM-directed dead_code fixes): wire device::current_device_seed by removing
the identical duplicate private fn in org_session.rs (de-dup); #[allow(dead_code)]
+ justification on org_session org_meta_path/load_meta (API completeness, no
command consumes org.json yet). Also silence a 3rd pre-existing test-only warning
(unused relicario() helper in tests/org_init_signing.rs).

Honest deferrals kept explicit throughout: Card/Key/Document/Totp org add/edit
parity, extension org switch/read (Dev-D) + writes, phase-2 (SSO/LDAP, read
audit, per-collection subkeys, HTTP plane). Full workspace cargo test green,
zero warnings. All cited code constants pinned file:line.

Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
Claude-Session: https://claude.ai/code/session_01TJo44YM3UbBjro2fG6NrKy
2026-06-20 15:54:51 -04:00

4.2 KiB
Raw Blame History

Relicario Roadmap

Living document — update alongside STATUS.md when milestones shift. "Up next" items have specs; "Medium-term" items may have specs; "Long-term" items are direction, not committed scope.

Shipped

Version Highlights
(untagged, 2026-06-20) Enterprise org vault — backend complete (7392795): relicario-core org module (ECIES X25519 key wrap/unwrap, OrgRole/OrgMember/OrgManifest types, filter_for_member, schema_version: 1); relicario-server org hook (verify-org-commit: signature verification, path-scoped authz, enforce_owner_only_elevation on parent role, enforce_schema_monotonicity, generate-org-hook, new [lib] target); relicario-cli — all 19 relicario org subcommands: init, add-member/remove-member/set-role, create-collection/grant/revoke, rotate-key (re-encrypts all blobs), transfer-ownership, delete-org, status, audit, and item CRUD (add/get/list/edit/rm/restore/purge). Not yet shipped: org add/edit for Card/SshKey/Document/Totp; extension org parity (Dev-D); phase 2 (SSO/LDAP, read audit, per-collection subkeys, HTTP plane).
v0.7.0 (2026-06-01) Extension restructure (Plan C) complete — Phases 3/4/6 merged via 3 parallel worktree streams under PM coordination: setup wizard crypto migrated into the SW (create_vault/attach_vault; setup.ts 1230→58 LOC + step registry); vault.ts split 1037→194 LOC into 5 focused + 2 support modules; vault_locked intercept lifted into shared/state.ts; get_vault_status SW message + sidebar status indicator closing the last relicario status CLI/extension parity gap
v0.6.0 (2026-05-30) Security audit fixes; device authentication; backup/restore + LastPass import; fullscreen UX Phases 1+2A+2B; v0.5.1 Streams A/B/C (3-column vault layout + bottom-sheet picker + toast system; left-nav settings; Recovery QR end-to-end + setup wizard Style C); 1C-γ (attachments + Document type + device registration + trash + field history); Plan B multi-stream refactor (commands/ split, prompt_or_flag, core/WASM seam); vault-tab management surfaces revamp (settings synced/local split, devices fingerprint, trash purge countdown, field-history polish, item-history-index, #history/<id> routing); doc-structure redesign (rename to DESIGN/CRYPTO/docs/FORMATS, scope headers + Next: footers); GPL-3.0-or-later license
v0.2.0 Typed-item rewrite (Plans 1A/1B/1C-α/β₁/β₂)

See CHANGELOG.md for tagged-release detail and STATUS.md for the per-train commit list.

Up next

All three 2026-05-04 architecture-review specs are shipped; enterprise org vault backend is shipped (2026-06-20). Pending items in rough priority order:

  • Org-vault item-type parityorg add/edit support for Card, SshKey, Document, Totp (Login/SecureNote/Identity ship today)
  • Extension org parity — read — org switch + collection-filtered browse in the popup/vault tab (Dev-D, deferred)
  • Extension org parity — writeorg add/edit/rm from the extension
  • Phase 4: command palette — ⌘K global search + action dispatch across the vault tab (no spec yet)

Medium-term

(promote here once specced)

  • Org vault phase 2 — SSO/LDAP federation, read audit log, per-collection subkeys (true cryptographic scope separation per collection), HTTP management plane

Long-term / backlog

  • Relay server — encrypted WebSocket relay for multi-device sync without a shared git server Spec: docs/superpowers/specs/2026-05-02-relay-server-design.md Plan: docs/superpowers/plans/2026-05-02-relay-server.md (c0921b1) Code skeleton: crates/relicario-server/ exists but only houses the pre-receive hook today; the relay binary would either extend or replace it.
  • Mobile — Rust core compiles to ARM; JNI wrapper for Android, Swift wrapper for iOS

Non-goals (explicitly deferred or cancelled)

  • Reference-image rotation — changing the image factor without re-embedding. Back-burner, not cancelled.
  • Per-entry subkeys — no real-world benefit at family-vault scale; see design rationale in docs/CRYPTO.md.
  • libgit2 / gitoxide — shell-out to git is intentional; see crates/relicario-cli/ARCHITECTURE.md.
Reference in New Issue View Git Blame Copy Permalink