232 commits

Author	SHA1	Message	Date
senke	2a80cb4d2f	feat(v0.12.6): update pentest deliverables with comprehensive 36-finding audit ... Expanded from initial 14-finding analysis to full 36 findings after 6 specialized audit agents completed deep analysis. - PENTEST_REPORT: 5 CRITICAL, 10 HIGH, 12 MEDIUM, 6 LOW, 3 INFO - REMEDIATION_MATRIX: P0 (6h), P1 (17h), P2 (8h), P3 (10h) = ~41h total - ASVS_CHECKLIST: 70/102 (68.6%) with 5 FAIL, 26 PARTIAL Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>	2026-03-13 16:52:03 +01:00
senke	7e05cdf5da	feat(v0.12.6): pentest security audit — 3 deliverables ... - PENTEST_REPORT_VEZA_v0.12.6.md: 14 findings (0 CRIT, 2 HIGH, 5 MEDIUM, 4 LOW, 3 INFO), 18 PASS controls - REMEDIATION_MATRIX_v0.12.6.md: prioritized remediation actions (P1: 4h, P2: 5h, P3: 5.5h) - ASVS_CHECKLIST_v0.12.6.md: OWASP ASVS Level 2 — 92/101 (91.1%) conformity Methodology: SAST + manual code review, OWASP Top 10 2021, API Security Top 10 2023 Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>	2026-03-13 16:44:38 +01:00
senke	d168bfd9e4	feat(v1.0.0-rc1): release candidate — GO/NO-GO audit, dark pattern fix, docs ... TASK-RC-001: GO/NO-GO checklist with evidence (16/21 GO, 5 staging-dependent) TASK-RC-002: Dark pattern audit — removed public play/like/follower counts - TrackDetailPageCoverAndActions: stats visible only to creator - TrackList: removed public play count column - TrackSearchResults: removed play_count/like_count display - UserCard: removed public follower count - SearchPageResults: removed followers_count display TASK-RC-003: Privacy policy (RGPD-compliant, docs/PRIVACY_POLICY.md) TASK-RC-004: Discovery algorithm documentation (auditable, docs/DISCOVERY_ALGORITHM.md) TASK-RC-005: Branch release ready (CI/CD validation pending) TASK-RC-006: Re-pentest noted as optional/staging-dependent Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>	2026-03-13 16:23:18 +01:00
senke	eb2862092d	feat(v0.10.6): Livestreaming basique F471-F476 ... - Backend: callbacks on_publish/on_publish_done, UpdateStreamURL, GetByStreamKey - Nginx-RTMP: config infra, docker-compose service (profil live) - Frontend: stream_url dans LiveStream, HLS.js dans LiveViewPlayer, état Stream terminé - Chat: rate limit send_live_message 1 msg/3s pour rooms live_streams - Env: RTMP_CALLBACK_SECRET, STREAM_HLS_BASE_URL, NGINX_RTMP_HOST - Roadmap v0.10.6 marquée DONE	2026-03-10 10:21:57 +01:00
senke	22f0c04b3f	stabilisation commit: while implementing v0.10.5	2026-03-09 19:36:33 +01:00
senke	171a154763	feat(v0.10.2): Recherche fulltext Elasticsearch - F361-F365 ... - Elasticsearch 8.x dans docker-compose.dev - Package internal/elasticsearch: client, config, mappings, indices - Sync PG→ES: reindex tracks/users/playlists, IndexTrack/DeleteTrack - SearchService ES: multi_match + fuzziness (typo tolerance), highlighting - Fallback gracieux: PostgreSQL si ELASTICSEARCH_URL absent - Routes: GET /search, GET /search/suggestions, POST /admin/search/reindex - Frontend: searchApi cursor/limit params (extensibilité) - docs/ENV_VARIABLES: ELASTICSEARCH_URL, ELASTICSEARCH_INDEX, ELASTICSEARCH_AUTO_INDEX - Roadmap v0.10.2 → DONE	2026-03-09 10:13:18 +01:00
senke	5197bd24ee	v0.9.3	2026-03-05 19:35:57 +01:00
senke	b6c004319c	v0.9.2	2026-03-05 19:27:34 +01:00
senke	2df921abd5	v0.9.1	2026-03-05 19:22:31 +01:00
senke	ecf8d73e55	fix(release): v1.0.2 — Conformité complète V1_SIGNOFF (21 critères) ... - Couverture Go: script coverage_report.sh, 39% mesuré - Vitest thresholds frontend 50% - Load test WebSocket: CHAT_ORIGIN→backend, WS_URL=/api/v1/ws - Tests: chat_service (WSUrl), password_service (hash/expired) - V1_SIGNOFF: 14 PASS, 7 N/A documentés - PERFORMANCE_BASELINE, RGPD, PWA tables v1.0.2 - Runbooks, Grafana, Secrets validés	2026-03-03 21:18:53 +01:00
senke	7cfd48a82a	fix(release): v1.0.1 — Conformité complète ROADMAP checklist ... - Sécurité: npm 0 CRITICAL, cargo audit 0 vulnérabilités - OpenAPI: @Param id corrigé pour /tracks/quota/{id} - Tests: Payment E2E passe, OAuth DATABASE_URL fallback - Migrations: 000_mark_consolidated.sql - veza-stream-server: prometheus 0.14, validator 0.19 - docs: SECURITY_SCAN_RC1, V1_SIGNOFF, PROJECT_STATE	2026-03-03 20:17:54 +01:00
senke	69c6f55fb1	chore(release): bump VERSION to 1.0.0 — Commercial release	2026-03-03 19:54:04 +01:00
senke	dad5aae71c	chore(release): v0.992 RC2 — Release notes, sign-off final	2026-03-03 19:53:41 +01:00
senke	0f31c11304	chore: regenerate CHANGELOG, bump VERSION to 0.991 for RC1	2026-03-03 19:52:49 +01:00
senke	84b3d7b42a	perf(web): add Lighthouse audit section for v0.982	2026-03-03 19:50:08 +01:00
senke	e011fd6920	fix(bugbash): document P1/P2 bug bash completion for v0.981	2026-03-03 19:49:53 +01:00
senke	605790e2ea	docs: retrospective v0.803, archive scope, update SCOPE_CONTROL ... - Add RETROSPECTIVE_V0803.md - Archive V0_803_RELEASE_SCOPE.md to docs/archive/ - Update SCOPE_CONTROL: phase v0.901, link to archived scope - Update .cursorrules: scope v0.901, v0.803 archived	2026-03-03 09:25:34 +01:00
senke	1e4ed6ef87	docs: update API_REFERENCE, CHANGELOG, FEATURE_STATUS, PROJECT_STATE for v0.803	2026-03-03 09:25:20 +01:00
senke	4464f98194	chore(release): v0.981 — Beta (staging deploy, bug bash, smoke test)	2026-03-02 19:33:42 +01:00
senke	d577f8c9be	chore(release): v0.971 — Phantom (gamification removal, WebRTC Beta, limits doc)	2026-03-02 19:25:37 +01:00
senke	da837fc085	chore(release): v0.951 — Loadtest (500 req/s, 1000 WS, 50 uploads, perf indexes)	2026-03-02 19:22:38 +01:00
senke	b52f209636	chore(release): v0.962 — Onboard (API ref, onboarding <30min, ADRs)	2026-03-02 19:11:06 +01:00
senke	f692ebfd26	chore(release): v0.961 — Playbook (runbooks déploiement, rollback, incident)	2026-03-02 19:09:46 +01:00
senke	40fba3cbbf	chore(release): v0.942 — Compress (migration consolidation procedure, mark script)	2026-03-02 19:05:54 +01:00
senke	1318a53a64	chore(release): v0.931 — Cursor (cursor-based pagination, performance baseline)	2026-03-02 12:35:49 +01:00
senke	72d40990c5	feat(v0.923): API contract tests, OpenAPI generation, CI type sync check	2026-02-27 20:23:10 +01:00
senke	5063c95a5c	docs: update documentation for v0.803 release	2026-02-25 20:04:37 +01:00
senke	7692c4b8b9	feat(v0.802): frontend Cloud/Gear, MSW, docs, scope v0.803, archive ... - Cloud: CloudFileVersions, CloudShareModal, versions/share in CloudView - Gear: GearDocumentsTab, GearRepairsTab, warranty badge, initialTab - MSW: cloud versions/share, gear documents/repairs, tags suggest - Stories: CloudFileVersions, CloudShareModal, GearDetailModal variants - gearService: listDocuments, uploadDocument, deleteDocument, listRepairs, createRepair, deleteRepair - cloudService: listVersions, restoreVersion, shareFile, getSharedFile - gear_warranty_notifier: 24h ticker, notifications for expiring warranty - tag_handler_test: unit tests - docs: API_REFERENCE, CHANGELOG, PROJECT_STATE, FEATURE_STATUS v0.802 - SCOPE_CONTROL, .cursorrules: scope v0.803 - archive: V0_802_RELEASE_SCOPE, RETROSPECTIVE_V0802	2026-02-25 14:00:58 +01:00
senke	9bef4db8a6	chore(docs): archive V0_801_RELEASE_SCOPE, retrospective, scope v0.802	2026-02-25 10:00:39 +01:00
senke	7c73af9b7f	docs: update CHANGELOG, PROJECT_STATE, FEATURE_STATUS for v0.801	2026-02-25 10:00:24 +01:00
senke	63867f1d09	feat(v0.703): Go Live & Streaming Complet ... - Backend: room creation for live streams, permissions CanJoin/CanSend/CanRead for stream rooms - LiveViewChat: useLiveStreamChat hook, WebSocket connection, stream_id as room - LiveViewPlayer: real-time viewer count via polling (5s) - Media Session: seekbackward/seekforward handlers (10s step) - GoLiveView.stories.tsx: Default, Loading, Error, StreamKeyVisible - Docs: API_REFERENCE, CHANGELOG, PROJECT_STATE, FEATURE_STATUS, RETROSPECTIVE_V0703 - SCOPE_CONTROL, .cursorrules: update to v0.801 - Archive V0_703_RELEASE_SCOPE.md	2026-02-25 09:35:22 +01:00
senke	da20e83e09	docs: complete roadmap documentation v0.703 to v0.903 (v1.0 target) ... Add Release Scope, Implementation Plan, and Smoke Test for 7 versions: - v0.703: Go Live & Streaming Complet (Phase 7 Finale) - v0.801: UX/UI Polish, Accessibilite & PWA (Phase 8) - v0.802: Cloud Complet, Fichiers & Gear Avance (Phase 8) - v0.803: Securite, Compliance & Outillage Dev (Phase 8) - v0.901: Marketplace Complet & Analytics Avances (Phase 9) - v0.902: Social Complet, Chat & Notifications (Phase 9) - v0.903: Stabilisation v1.0 & Launch Readiness (Phase 9) 21 documents total (3 per version), covering all remaining features needed to reach v1.0 from v0.702.	2026-02-24 01:32:04 +01:00
senke	78122f1145	chore(docs): archive V0_702_RELEASE_SCOPE	2026-02-24 00:22:17 +01:00
senke	f4f5f32c2d	docs: add RETROSPECTIVE_V0702, placeholder V0_703, update SCOPE_CONTROL	2026-02-24 00:21:55 +01:00
senke	6293a88476	docs: update CHANGELOG, PROJECT_STATE, FEATURE_STATUS for v0.702	2026-02-24 00:21:20 +01:00
senke	63e964746a	docs: add reviews, invoices, refunds to API_REFERENCE.md	2026-02-24 00:20:29 +01:00
senke	3b429e726a	docs: add v0.702 scope, implementation plan, and smoke test ... Define v0.702 scope (Reviews wiring, Invoices, Refunds, Product Detail route), detailed 12-step implementation plan, and comprehensive smoke test checklist.	2026-02-23 23:52:46 +01:00
senke	c785e61e69	feat(v0.701): AdminTransfers page/route, MSW, stories, Deep Health, API ref, docs, scope v0.702 ... - Step 13: AdminTransfersPage, LazyAdminTransfers, route /admin/transfers - Step 14: MSW handlers admin transfers - Step 15: AdminTransfersView stories (Default, Empty, WithFailedTransfers, Error, Loading) - Step 16-17: DeepHealth handler (disk, config), GET /health/deep - Step 19: health_deep_test.go (4 tests) - Step 20: docs/API_REFERENCE.md - Step 21: Archive V0_604, MIGRATIONS.md migration 116 - Step 22: CHANGELOG, PROJECT_STATE, FEATURE_STATUS v0.701 - Step 23: RETROSPECTIVE_V0701, V0_702 placeholder, SCOPE_CONTROL, .cursorrules - Step 24: Archive V0_701_RELEASE_SCOPE - Fix: AdminTransfersView Select component (use options API)	2026-02-23 23:42:02 +01:00
senke	c6c7c8b20f	docs: add v0.701 release scope, smoke test, and update references ... Phase 7 kickoff — Retry Transfers, Admin Dashboard & Deep Health. Absorbs v0.604 backlog. Updates SCOPE_CONTROL, PROJECT_STATE, .cursorrules.	2026-02-23 23:21:06 +01:00
senke	dcf5aab783	docs: add RETROSPECTIVE_V0603.md ... chore(release): archive v0.603 scope, create v0.604 placeholder	2026-02-23 22:59:59 +01:00
senke	00d33a1add	docs: update PROJECT_STATE, FEATURE_STATUS, CHANGELOG for v0.603	2026-02-23 22:59:38 +01:00
senke	bd7657710d	docs(payout): update PAYOUT_MANUAL for v0.603 auto transfer	2026-02-23 22:59:07 +01:00
senke	ba31ce6a33	chore(docs): archive obsolete pre-v0.501 docs	2026-02-23 22:58:53 +01:00
senke	c4110fded7	docs(v0.603): scope, plan d'implémentation et smoke test ... Define v0.603 release scope: automatic Stripe Connect transfers after payment, configurable platform commission, technical debt triage (210+ TODOs), and docs archival. Includes detailed implementation plan (4 sprints, 19 commits) and smoke test checklist.	2026-02-23 22:48:04 +01:00
senke	83ed4f315b	chore(release): v0.602 — Payout, Dette Technique & Tests E2E ... - Stripe Connect: onboarding, balance, SellerDashboardView - Interceptors: auth.ts, error.ts extracted, facade - Grafana: dashboards enriched (p50, top endpoints, 4xx, WS, commerce) - E2E commerce: product->order->review->invoice - SMOKE_TEST_V0602, RETROSPECTIVE_V0602, PAYOUT_MANUAL - Archive V0_602 scope, V0_603 placeholder, SCOPE_CONTROL v0.603 - Fix sanitizer regex (Go no backreferences) - Marketplace test schema: product_licenses, product_images, orders, licenses	2026-02-23 22:32:01 +01:00
senke	cdc4bd82e6	docs(v0.601): scope et plan d'implémentation ... - V0_601_RELEASE_SCOPE.md: lots INF1, COM1, AUTH1, CLN1, QA1 - PLAN_V0_601_IMPLEMENTATION.md: 6 sprints, tâches détaillées, commits - PROJECT_STATE.md: prochaine version v0.601 - FEATURE_STATUS.md: section Prévu en v0.601 - SCOPE_CONTROL.md: référence V0_601_RELEASE_SCOPE	2026-02-23 19:41:19 +01:00
senke	aee1ec18e2	docs(v0.503): finalization, documentation, changelog, tag ... - Update FEATURE_STATUS.md: HLS Streaming -> Opérationnel (v0.503) - Update PROJECT_STATE.md: v0.503 delivered, next version v0.601 - Add CHANGELOG.md v0.503 entry with all changes - Create SMOKE_TEST_V0503.md validation checklist - Create RETROSPECTIVE_V0503.md - Archive V0_503_RELEASE_SCOPE.md to docs/archive/ - Create V0_601_RELEASE_SCOPE.md placeholder - Update SCOPE_CONTROL.md references to v0.601 - Update .cursorrules scope to v0.601	2026-02-22 21:28:46 +01:00
senke	0376bdcd16	docs(v0.503): plan d'implémentation Stream Server E2E + Chat Hardening + Cleanup ... - V0_503_RELEASE_SCOPE.md: scope complet (4 lots SS1/CH1/CL1/QA1) - PLAN_V0_503_IMPLEMENTATION.md: plan détaillé 5 sprints, 39 tâches - SCOPE_CONTROL.md: références mises à jour v0.502 → v0.503 - PROJECT_STATE.md: prochaine version v0.503, stack technique corrigée - FEATURE_STATUS.md: chat Go opérationnel, HLS en intégration v0.503 - .cursorrules: scope autorisé v0.503 (SS1, CH1, CL1, QA1)	2026-02-22 21:01:46 +01:00
senke	40883aebea	docs(v0.502): Sprint 6 -- finalization, docs, and tag ... - Update PROJECT_STATE.md: v0.502 delivered, next version v0.503 - Update CHANGELOG.md: comprehensive v0.502 entry (Added/Changed/Removed/Infrastructure) - Create SMOKE_TEST_V0502.md: validation checklist for chat rewrite - Create RETROSPECTIVE_V0502.md: retrospective with metrics and action items - Archive V0_502_RELEASE_SCOPE.md to docs/archive/ - Create V0_503_RELEASE_SCOPE.md placeholder - Update SCOPE_CONTROL.md and .cursorrules to reference v0.503	2026-02-22 20:51:55 +01:00
senke	02605b0405	test(chat): Sprint 5 -- unit tests, E2E tests, feature parity validation ... - Add hub_test.go: register/unregister, join/leave room, broadcast, exclude sender, send to user, multiple clients same user (6 tests) - Add handler_messages_test.go: send message, missing fields, edit ownership check, soft delete (4 tests) - Add handler_realtime_test.go: typing broadcast, read receipts, reactions add/remove, delivered status (5 tests) - Add e2e_chat_ws_test.go: auth valid, missing token, invalid token, ping/pong - Add e2e_chat_messages_test.go: 2-client message flow, typing indicator - Create CHAT_FEATURE_PARITY.md: 25-feature checklist (all OK or IMPROVED)	2026-02-22 20:49:32 +01:00