Commit Graph

6 Commits

Author SHA1 Message Date
Siavash Sameni
fa7234cbe1 Document Telegram first-class auth 2026-05-24 16:12:46 +04:00
Siavash Sameni
7651d69811 Document telegram-native task 5 foundation 2026-05-24 13:19:54 +04:00
Siavash Sameni
6a451040d9 Complete task 4 backend security architecture docs 2026-05-24 11:31:40 +04:00
Siavash Sameni
4cf5c49274 docs(audit): align documentation with post-remediation backend reality
- Update data model enums to match backend models
- Update API reference auth requirements
- Add dispute module references and warning blocks
- Add 2026-05-24 audit remediation callout to Overview
- Generate task breakdowns and audit artifacts
- Add doc alignment report (.taskmaster/reports/)
2026-05-24 11:16:29 +04:00
Siavash Sameni
10a6c2fa53 docs: add backend security refactor assessment 2026-05-24 08:43:01 +04:00
Siavash Sameni
5b93b2d23e docs: add comprehensive logical audit report
Adds a full cross-document audit covering:
- Data Models (broken refs, ghost states, missing constraints)
- API Reference (unauthenticated endpoints, field mismatches, missing pagination)
- Architecture (fictitious deps, statelessness claims vs reality)
- Flows (race conditions, missing failure paths, auth bypasses)
- Security (passkey stubs, JWT storage, webhook verification)

32 findings organized by severity with recommended fixes.
2026-05-24 08:03:20 +04:00