docs: surface security features and test coverage in README by akuehner · Pull Request #235 · clagentic/clagentic-console

akuehner · 2026-06-11T20:47:15Z

Summary

Add Security section after Architecture documenting five code-level properties: 30-day token TTL with upgrade migration, atomic rename-after-write with mode 0o600, append-only audit log, progressive lockout with per-IP and per-username tracking, and OS-level isolation in multi-user mode
Add Postinstall / systemd subsection under Install explaining the Linux systemd unit registration and how to skip with --ignore-scripts
Add Testing section listing the 12 test surface areas covered by the 26-file test suite

Documentation-only change. No code modified.

npm test — 303 tests, 0 failures
All claims verified against source: lib/server-auth.js (TOKEN_TTL_MS, lockout), lib/store.js (atomic write, 0o600), lib/audit.js (append-only log), lib/os-users.js (OS isolation), scripts/postinstall.js (systemd), test/ (26 test files)

clagentic-release-bot · 2026-06-12T10:44:01Z

This issue has been resolved in version 1.5.0-beta.2 (beta).

To update, run:

npx @clagentic/console@1.5.0-beta.2

docs: add security architecture and test coverage sections to README

83bf500

akuehner merged commit db03860 into main Jun 11, 2026
1 check passed

akuehner deleted the docs/readme-security-tests branch June 11, 2026 20:50

clagentic-release-bot Bot added the released: beta label Jun 12, 2026