ansible/flaskpaste
1
0
Fork 0
forked from claw/flaskpaste
Code Pull Requests Activity

docs: add compression design constraints

Browse Source 
Compression must be paired with encryption (compress-then-encrypt)
to prevent bypassing entropy enforcement via compress-only uploads.
This commit is contained in:
Username
2025-12-25 19:40:34 +01:00
parent f640ec85b5
commit 9901649fd7
1 changed files with 3 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
TODO.md
View File

@@ -9,6 +9,9 @@ Unstructured intake buffer for ideas, issues, and observations. Items here are r
- Paste compression for large text content - Paste compression for large text content
- Must mark compression in URL fragment (e.g., `#z:<key>` or `#<key>:z`) - Must mark compression in URL fragment (e.g., `#z:<key>` or `#<key>:z`)
- Receiver needs to know content is compressed before decryption - Receiver needs to know content is compressed before decryption
- Design: compress-then-encrypt only (not compress-only)
- Compressed data has high entropy → bypasses entropy enforcement
- Must enforce encryption when compression enabled (CLI-side)
- ETag support for conditional requests - ETag support for conditional requests
- Neovim/Vim plugin for editor integration - Neovim/Vim plugin for editor integration
- Webhook notifications for paste events - Webhook notifications for paste events