docs: sync ROADMAP and add compression design note
Some checks failed
CI / Lint & Format (push) Failing after 16s
CI / Unit Tests (push) Has been skipped
CI / Memory Leak Check (push) Has been skipped
CI / SBOM Generation (push) Has been skipped
CI / Security Scan (push) Failing after 21s
CI / Security Tests (push) Has been skipped
Some checks failed
CI / Lint & Format (push) Failing after 16s
CI / Unit Tests (push) Has been skipped
CI / Memory Leak Check (push) Has been skipped
CI / SBOM Generation (push) Has been skipped
CI / Security Scan (push) Failing after 21s
CI / Security Tests (push) Has been skipped
- Update test count: 301 → 337 - Fix CLI commands: pki revoke doesn't exist, use pki download - Add compression URL marker requirement to TODO ideas
This commit is contained in:
Username
@@ -29,7 +29,7 @@ FlaskPaste v1.5.0 is deployed with comprehensive security hardening and abuse pr
|
||||
- CLI with list, search, update, export commands
|
||||
- Public certificate registration (PoW-protected)
|
||||
- CLI register command for certificate enrollment
|
||||
- Comprehensive test suite (301 tests)
|
||||
- Comprehensive test suite (337 tests)
|
||||
- Complete security pentest remediation (15 items)
|
||||
- PKI audit logging (certificate lifecycle events)
|
||||
- Request duration metrics (Prometheus histogram)
|
||||
@@ -108,7 +108,7 @@ Integrated certificate authority for mTLS:
|
||||
- `POST /pki/revoke/<serial>` - Revoke certificate
|
||||
- `GET /register/challenge` - Get PoW challenge for registration
|
||||
- `POST /register` - Public certificate registration (PoW-protected)
|
||||
- CLI: `fpaste pki status`, `fpaste pki issue`, `fpaste pki revoke`
|
||||
- CLI: `fpaste pki status`, `fpaste pki issue`, `fpaste pki download`
|
||||
- CLI: `fpaste register` - Self-service certificate enrollment
|
||||
|
||||
## Phase 4: Ecosystem (In Progress)
|
||||
@@ -141,8 +141,8 @@ Standalone Python CLI with encryption, PKI, and paste management:
|
||||
- `fpaste update <id>` - Update paste content/metadata
|
||||
- `fpaste export -o dir/` - Export all pastes to directory
|
||||
- `fpaste pki status` - Show PKI status
|
||||
- `fpaste pki issue -n "name"` - Request client certificate (admin)
|
||||
- `fpaste pki revoke <serial>` - Revoke certificate
|
||||
- `fpaste pki issue -n "name"` - Issue client certificate (admin)
|
||||
- `fpaste pki download` - Download CA certificate
|
||||
- `fpaste register` - Self-service certificate registration
|
||||
- `fpaste register --configure` - Register and auto-configure client
|
||||
- Automatic retry on PoW failure (max 5 attempts)
|
||||
|
||||
2
TODO.md
2
TODO.md
@@ -7,6 +7,8 @@ Unstructured intake buffer for ideas, issues, and observations. Items here are r
|
||||
## Ideas
|
||||
|
||||
- Paste compression for large text content
|
||||
- Must mark compression in URL fragment (e.g., `#z:<key>` or `#<key>:z`)
|
||||
- Receiver needs to know content is compressed before decryption
|
||||
- ETag support for conditional requests
|
||||
- Neovim/Vim plugin for editor integration
|
||||
- Webhook notifications for paste events
|
||||
|
||||
Reference in New Issue
Block a user