6 commits

Author	SHA1	Message	Date
Virgil	86c68ad1c9	Merge pull request '[agent/codex:gpt-5.3-codex-spark] Read .core/reference/RFC-CORE-008-AGENT-EXPERIENCE.md (the A...' (#14) from main into dev	2026-03-29 15:26:33 +00:00
Virgil	e80ef94552	fix(crypt): align AX error handling and cleanup checks ... Co-Authored-By: Virgil <virgil@lethean.io>	2026-03-29 15:25:12 +00:00
Snider	62482c7dc9	refactor: migrate imports to dappco.re/go/core/* paths ... Update module path from forge.lthn.ai/core/go-crypt to dappco.re/go/core/crypt. Migrate go-log, go-io, go-i18n imports to their new dappco.re/go/core/* paths with updated versions (core v0.5.0, log v0.1.0, io v0.2.0, i18n v0.2.0). Un-migrated modules (cli, go-store, go-inference) remain at forge.lthn.ai paths. Also fixes merge conflict marker and duplicate imports in crypt/openpgp/service.go, and updates CLAUDE.md to reflect new paths. Co-Authored-By: Virgil <virgil@lethean.io>	2026-03-22 01:43:27 +00:00
Snider	36bf16b06e	fix(coderabbit): address review findings ... - auth: prevent legacy .lthn fallback when .hash file exists but is unreadable or has unexpected format (security fix in verifyPassword and Login) - chachapoly: wrap raw error returns in Decrypt with coreerr.E() - trust: reject trailing data in LoadPolicies JSON decoder Co-Authored-By: Virgil <virgil@lethean.io>	2026-03-17 13:32:21 +00:00
Snider	39643ddba0	fix: replace fmt.Errorf and errors.New with coreerr.E() ... Replace all fmt.Errorf/errors.New calls in auth/auth.go, crypt/pgp/pgp.go, crypt/rsa/rsa.go, crypt/chachapoly/chachapoly.go, and trust/trust.go with coreerr.E(op, msg, err) from go-log. No stale pkg/framework imports found. Co-Authored-By: Virgil <virgil@lethean.io>	2026-03-16 18:19:51 +00:00
Claude	8498ecf890	feat: extract crypto/security packages from core/go ... ChaCha20-Poly1305, AES-256-GCM, Argon2 key derivation, OpenPGP challenge-response auth, and trust tier policy engine. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>	2026-02-16 15:25:54 +00:00