synor

misaradmin/synor

Fork 0

Commit graph

Author	SHA1	Message	Date
Gulshan Yadav	d9fd97bb96	chore: migrate from GitHub to Forgejo (git.misar.io) Some checks failed CI / Check (push) Failing after 2s Details CI / Test (push) Failing after 2s Details CI / Build (Linux x86_64) (push) Has been skipped Details Security Audit / Vulnerability Scan (push) Failing after 2s Details Security Audit / License & Security Policy (push) Failing after 2s Details Security Audit / Static Analysis (Clippy) (push) Failing after 2s Details Security Audit / Secret Detection (push) Failing after 2s Details Security Audit / Check Outdated Dependencies (push) Failing after 2s Details Security Audit / Unsafe Code Audit (push) Failing after 2s Details Security Audit / Property-Based Testing (push) Failing after 2s Details Security Audit / WASM Module Security (push) Failing after 2s Details CI / Benchmarks (push) Has been skipped Details CI / CI Success (push) Failing after 1s Details - Move .github/workflows/ to .forgejo/workflows/ (identical YAML, runner labels changed to self-hosted) - Drop macOS/Windows CI matrix legs (no macOS/Windows runners on self-hosted act_runner) - Update Cargo.toml repository URL to git.misar.io/misaradmin/synor - Remove .github/dependabot.yml (not applicable on Forgejo)	2026-03-30 08:20:39 +05:30
Gulshan Yadav	1606776394	feat: Phase 7 critical tasks - security, formal verification, WASM crypto ## Formal Verification - Add TLA+ specs for UTXO conservation (formal/tla/UTXOConservation.tla) - Add TLA+ specs for GHOSTDAG ordering (formal/tla/GHOSTDAGOrdering.tla) - Add mathematical proof of DAA convergence (formal/proofs/) - Document Kani verification approach (formal/kani/) ## Bug Bounty Program - Add SECURITY.md with vulnerability disclosure process - Add docs/BUG_BOUNTY.md with $500-$100,000 reward tiers - Define scope, rules, and response SLA ## Web Wallet Dilithium3 WASM Integration - Build WASM module via Docker (498KB optimized) - Add wasm-crypto.ts lazy loader for Dilithium3 - Add createHybridSignatureLocal() for full client-side signing - Add createHybridSignatureSmart() for auto-mode selection - Add Dockerfile.wasm and build scripts ## Security Review ($0 Approach) - Add .github/workflows/security.yml CI workflow - Add deny.toml for cargo-deny license/security checks - Add Dockerfile.security for audit container - Add scripts/security-audit.sh for local audits - Configure cargo-audit, cargo-deny, cargo-geiger, gitleaks	2026-01-10 01:40:03 +05:30

Author

SHA1

Message

Date

Gulshan Yadav

d9fd97bb96

chore: migrate from GitHub to Forgejo (git.misar.io)

CI / Check (push) Failing after 2s

Details

CI / Test (push) Failing after 2s

Details

CI / Build (Linux x86_64) (push) Has been skipped

Details

Security Audit / Vulnerability Scan (push) Failing after 2s

Details

Security Audit / License & Security Policy (push) Failing after 2s

Details

Security Audit / Static Analysis (Clippy) (push) Failing after 2s

Details

Security Audit / Secret Detection (push) Failing after 2s

Details

Security Audit / Check Outdated Dependencies (push) Failing after 2s

Details

Security Audit / Unsafe Code Audit (push) Failing after 2s

Details

Security Audit / Property-Based Testing (push) Failing after 2s

Details

Security Audit / WASM Module Security (push) Failing after 2s

Details

CI / Benchmarks (push) Has been skipped

Details

CI / CI Success (push) Failing after 1s

Details

- Move .github/workflows/ to .forgejo/workflows/ (identical YAML, runner labels changed to self-hosted)
- Drop macOS/Windows CI matrix legs (no macOS/Windows runners on self-hosted act_runner)
- Update Cargo.toml repository URL to git.misar.io/misaradmin/synor
- Remove .github/dependabot.yml (not applicable on Forgejo)

2026-03-30 08:20:39 +05:30

Gulshan Yadav

1606776394

feat: Phase 7 critical tasks - security, formal verification, WASM crypto

## Formal Verification
- Add TLA+ specs for UTXO conservation (formal/tla/UTXOConservation.tla)
- Add TLA+ specs for GHOSTDAG ordering (formal/tla/GHOSTDAGOrdering.tla)
- Add mathematical proof of DAA convergence (formal/proofs/)
- Document Kani verification approach (formal/kani/)

## Bug Bounty Program
- Add SECURITY.md with vulnerability disclosure process
- Add docs/BUG_BOUNTY.md with $500-$100,000 reward tiers
- Define scope, rules, and response SLA

## Web Wallet Dilithium3 WASM Integration
- Build WASM module via Docker (498KB optimized)
- Add wasm-crypto.ts lazy loader for Dilithium3
- Add createHybridSignatureLocal() for full client-side signing
- Add createHybridSignatureSmart() for auto-mode selection
- Add Dockerfile.wasm and build scripts

## Security Review ($0 Approach)
- Add .github/workflows/security.yml CI workflow
- Add deny.toml for cargo-deny license/security checks
- Add Dockerfile.security for audit container
- Add scripts/security-audit.sh for local audits
- Configure cargo-audit, cargo-deny, cargo-geiger, gitleaks

2026-01-10 01:40:03 +05:30

2 commits