vikingowl
dc438ea181
Plugins are now verified against ~/.config/gnoma/plugins.pins.toml at load time. Each plugin's plugin.json bytes are hashed (SHA-256) and: - recorded automatically on first load (TOFU) with a prominent warning - compared on subsequent loads - refused with a clear error if the hash drifted, without overwriting the pin so the user can review and re-enrol deliberately Pin-store I/O failures degrade to load-without-pinning rather than locking the user out of previously-trusted plugins. Closes audit finding C2. See ADR-003 for the decision rationale and docs/plugins-trust.md for the end-user trust model.
1.7 KiB
1.7 KiB
project, layout, path, essentials
| project | layout | path | essentials | ||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| gnoma | directory | docs/essentials/ |
|
Project Essentials — gnoma
| # | Essential | Status | Link | Last Updated |
|---|---|---|---|---|
| 1 | Vision | complete | vision.md | 2026-04-03 |
| 2 | Domain Model | complete | domain-model.md | 2026-04-03 |
| 3 | Architecture | complete | architecture.md | 2026-04-03 |
| 4 | Patterns | complete | patterns.md | 2026-04-03 |
| 5 | Process Flows | complete | process-flows.md | 2026-04-03 |
| 6 | UML Diagrams | complete | uml-diagrams.md | 2026-04-03 |
| 7 | API Contracts | complete | api-contracts.md | 2026-04-03 |
| 8 | Tech Stack & Conventions | complete | tech-stack.md | 2026-04-03 |
| 9 | Constraints & Trade-offs | complete | constraints.md | 2026-04-03 |
| 10 | Milestones | complete | milestones.md | 2026-04-03 |
| 11 | Decision Log | complete | decisions/001-initial-decisions.md | 2026-04-03 |
| 12 | Risk / Unknowns | complete | risks.md | 2026-04-03 |