Kordant

Author	SHA1	Message	Date
Michael Freno	7cbcde6a6b	feat: wire frontend pages to tRPC APIs - Add hooks (useAuth, useSubscription, useNotifications) for real API data - Add auth service (login/signup) with password hashing and session support - Replace stub auth with real tRPC calls in login/signup/onboarding pages - Replace mock dashboard data with real API data from hooks - Create service pages: DarkWatch, VoicePrint, SpamShield, HomeTitle, RemoveBrokers, Settings - Update Navbar, TopBar, Sidebar with real user data and correct routes - Add passwordHash field to users schema for credential auth - Fix tests to work with real hooks (mock tRPC/hooks)	2026-05-25 17:34:48 -04:00
Michael Freno	f627033665	feat: establish unified project foundation with root config cleanup - Archive legacy packages/, services/, server/ directories - Update pnpm workspace to web + browser-ext - Simplify root package.json scripts to delegate to web/ - Update turbo.json for new workspace structure - Remove obsolete root config files (vite, tsconfig, etc.) - Add .nvmrc, .editorconfig for consistent dev environment - Update CI workflow to remove references to deleted packages - Add missing dependencies (@tailwindcss/vite, tailwindcss) to web - Add test and lint scripts to web package - Verify pnpm install, build, and dev work correctly	2026-05-25 12:31:43 -04:00
Senior Engineer	91e4985a8e	FRE-4474 Phase 5: Verify and resolve security review findings for SpamShield and Cross-Service Correlation - FRE-4499 (SpamShield): Verified 6 security fixes (2 High, 4 Medium) - S01: Pre-compiled regex in RuleEngine (ReDoS fix) - S02: SmsClassifier accepts senderPhoneNumber context - S03: AlertServer JWT auth + origin validation - S04: SHA-256 phone hashing (PII protection) - S05: DecisionEngine timeout enforcement via Promise.race - S06: CarrierFactory.getAllCarriers properly async/await - FRE-4500 (Correlation): Verified 7 security fixes (2 Critical, 2 High, 2 Medium, 1 Low) - C1: Ingest endpoints auth via request.user.id - C2: IDOR protection on group endpoints (userId filter) - H3: JWT middleware registered in server.ts - H4: Fastify schema validation on all routes - M6: Payload sanitization with depth limit and circular ref detection - L7: CORS origin restricted to env var - Resolved liveness incidents FRE-4652 and FRE-4654 - All Phase 5 child issues now complete	2026-05-02 18:36:29 -04:00
Michael Freno	1e42c4a5c2	FRE-4529: Transfer ShieldAI code from FrenoCorp repo Transferred ShieldAI-related files mistakenly placed in ~/code/FrenoCorp: - Services: spamshield (feature-flags, audit-logger, error-handler), voiceprint (config, service, feature-flags), darkwatch (pipeline, scan, scheduler, watchlist, webhook) - Packages: shared-analytics, shared-auth, shared-ui, shared-utils (new); shared-billing, jobs supplemented with unique FC files - Server: alerts (FC version newer), routes (spamshield, darkwatch, voiceprint) - Config: turbo.json, tsconfig.base.json, vite/vitest configs, drizzle, Dockerfile - VoicePrint ML service - Examples Pending: apps/{api,web,mobile}/ structured merge, shared-db/db mapping Co-Authored-By: Paperclip <noreply@paperclip.ing>	2026-05-02 10:13:13 -04:00
Senior Engineer	218de3b03b	FRE-4471: Scaffold DarkWatch MVP — monorepo, schema, services, API routes, tests - Turborepo monorepo structure (packages: api, db, types, jobs; services: darkwatch) - Prisma schema: User, WatchListItem, Exposure, Alert, ScanJob models - WatchListService: CRUD with normalization, dedup, tier-based limits - HIBPService: API integration with severity scoring - MatchingEngine: exact-match with content hash dedup - AlertPipeline: dedup window, email notifications - ScanService: orchestrates watch list -> HIBP -> match -> alert flow - BullMQ job workers for scan and alert processing - Fastify API routes: watchlist, exposures, alerts, scan - Docker Compose: PostgreSQL 16 + Redis 7 - 15 unit tests passing - Implementation plan document uploaded	2026-04-29 09:47:45 -04:00

5 Commits