grant/standards
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
4ff7a06f4346bfc9543cfaecdd44ccb54bd56c1d
standards/STATUS.md
T
Keysat 4ff7a06f43 Roundup snapshot — 2026-06-20
2026-06-20 18:56:17 -05:00

18 KiB
Raw Blame History

Roundup — 2026-06-20

Repos scanned (11): keysat, matrix-bridge, premier-gunner, proof-of-work, recap-relay, recap, spark-control, standards, ten31-database, ten31-signal-engine, ten31-transcripts

Skipped (not git repos): discount-watcher, expense-organizer, giga, Grand-Cayman-paddleboard, heart-rate, one-river, "satoshi-sleep (need to add code)", "START9 PACKAGING", ten31-command-center, timestamp-converter, timestamp-newspaper, website-landing, Workout-log

Failed readers: none.

Per-project snapshot

keysat — Self-hosted Bitcoin-native software-licensing service (StartOS 0.4.x s9pk + 4 SDKs + public sites). Live canonical 0.2.0:62 (buy-page escape fix shipped, installed on immense-voyage.local, master at licensing.keysat.xyz 200, migrations → 0025); daemon/wrapper tests green, no CI. In progress: inbox items just triaged into ROADMAP. Next: eval P2 hardening (XFF, dep bumps, admin/public split), split audit:read scope, work newly-routed ROADMAP cluster.

matrix-bridge — Single-user Matrix bot on the Spark that turns a room message into a live Claude Code session on the Mac, surfaced to phone. Phases 03 + ask mode complete; capture mode (D13) live 2026-06-16, proven on 1 room (N=3 pending). Shipped in Spark Control v0.21.0 tile. Next: prove capture mode on remaining rooms; optional Docker HEALTHCHECK; optional priority keyword in capture-note.sh.

premier-gunner — Kid-friendly soccer-training tracker PWA (single player), StartOS 0.4.x s9pk. Live v0.1.7:0, all requested features built/deployed, no in-progress work. Known issue: in-app password change reverts on restart (use the action). Next: confirm speed unit (mph vs km/h); optionally work the eval backlog.

proof-of-work — Self-hosted multi-user workout logger (Next.js), StartOS 0.4 s9pk. Live 1.2.0:9 (tsc/lint clean, 274 tests); 6 AI providers incl. SparkControl local inference; design contract established. Operator running on-box successfully. Blocker: Mobile-Safari first-login-tap fails (2nd works) — gated on capturing the Safari error code. Next: P3 hardening batch, design-cleanup batch, tiered AI prompts, Next 15→16.

recap-relay — Operator-side credit-metered transcription/diarization/analysis relay in front of Gemini + Spark Control; powers Recaps. Private, operator-box only. Live v0.2.127 (app 0.2.155), 79 tests green, dashboard redesign (mobile-first) done, design contract imported. ⚠ A P1 analyze-hang outage is captured in the inbox but NOT yet reflected as fixed here. Next (low priority per repo): typography hygiene tail; deferred speaker-tool polish; P3+ security/packaging tail.

recap — YouTube + podcast summarizer + library; StartOS s9pk (self-host) and recaps.cc cloud (multi-tenant). Live: app 0.2.162 + relay 0.2.126, 158 tests; just shipped relay-client dedup. Daily Digest installed but off-box-unsmoke-tested. Next: deferred refactor-survey items (test-first); operator verification actions (iPad scroll, Gemini key rotation, real cloud purchase/webhook/reminder tests, smoke Daily Digest); design palette.css stretch.

spark-control — Browser-based StartOS 0.4 package controlling a dual DGX Spark AI cluster (vLLM model swaps + STT/diarization/TTS/embeddings/redaction APIs). Live v0.27.3:0; Qwen3.6 vision end-to-end (cards 7/7 @ ~97 tok/s), 161 pytest. Vision "check" button removed at owner's request — do NOT re-add. Next (externally gated): Grant sends adopter reply; adopter runs disk-scan diagnostic; codify Gitea Releases channel.

standards (meta / tooling layer) — Global source of agent commands, subagents, and how-i-work.md, symlinked live into ~/.claude. Fleet built/live (9 commands, 12 subagents); recent: refactor-scout, /adjudicate, design round-trip, onboarding-tester all shipped. Prior roundup snapshot 2026-06-18. Next: first real /adjudicate run (calibrate drop-bias); Stage-1 onboarding-tester harness; cross-repo quality-gate standard + /harden (item 1); non-git-folder sweep (item 6 residual).

ten31-database — Self-hosted venture-fund CRM (replacing Airtable) + in-house AI fundraising layer; Phase 0/1 live on Start9. Live v0.1.0:103 (verified 2026-06-20); fundraising grid + email capture is system of record. Mobile UX batch, required-date reminders, M3 business-card OCR all shipped this session. W1 Reminders + W2 NL-query built/tested (deploy pending). Next: spot-check bidirectional sync; Phase 8 mobile-design conformance (8 phases scoped); deferred in-app card intake (plan written, approval pending); real-card OCR accuracy spot-checks.

ten31-signal-engine — Recurring pipeline ingesting audio/text, extracting structured claims, surfacing investment signals through Ten31's thesis lens with falsifiable predictions. Strike adversarial test CONDITIONAL PASS (2026-06-16); 56,008 claims embedded in Qdrant; engine correctly refuses the false positive. Repo clean, no automated test suite yet. Next: frontier-fan-out test H6; complete Strike reflexivity demo (audio-GPU gated); Job A discovery scorers.

ten31-transcripts — Native macOS menu-bar app: dual-track call audio + active-speaker window-watching → self-hosted SparkControl for transcription/diarization/naming. main clean (2026-06-17), 91 tests; meeting-name prompt + folder rename built. Naming prompt unit-tested but not yet exercised on a live stop. Next: repoint origin to gitea-home (off flaky .local); backend URL primary→fallback + mmss() NaN guard; run a real recording end-to-end.

Priority queue (all projects + untriaged inbox)

P1

  • [P1] Analyze-phase hang permanently jams the single in-memory hardware FIFO slot → blocks ALL YouTube processing; multi-hour outage — source: inbox(untriaged) → recap-relay — server/backends/gemini.js:587/281 (no AbortSignal), hardware-queue.js:51-98 (no acquire-timeout/dead-holder watchdog)
  • [P1·"elevated, money-path bug"] Auto-charge silently lapses subscription on 200-with-failure response — source: keysat (ROADMAP, Payments & subscriptions)

P2

Untriaged inbox

  • [P2] Add Gemini 3.5 to model selection (research-agent confirm available stable model name) — source: inbox(untriaged) → recap
  • [P2] Add Gemini 3.5 to model selection (research-agent confirm available stable model name) — source: inbox(untriaged) → recap-relay
  • [P2] Verify cloud background subscription processing isn't silently skipped post-core-decoupling (entitlement gate server/index.js:1400) — source: inbox(untriaged) → recap — check recaps.cc/api/sub-check-log
  • [P2] Email auto-capture should match investor only in to:/from: (not cc) — source: inbox(untriaged) → ten31-database
  • [P2] Add camera icon in top bar (next to pencil) for business-card capture → same flow as Matrix intake bot — source: inbox(untriaged) → ten31-database
  • [P2] Backup-history in Settings should default minimized + chevron-expandable at bottom — source: inbox(untriaged) → ten31-database
  • [P2] Screen refresh should preserve the current tab rather than reset to the top tab — source: inbox(untriaged) → ten31-database
  • [P2] Redesign the software logo/icon (used for the StartOS service) — source: inbox(untriaged) → spark-control
  • [P2] Add a dashboard card for the ten31 CRM / intake bot (Update/Restart/Stop/Logs tile) — source: inbox(untriaged) → spark-control (also tracked in ten31-database ROADMAP)
  • [P2] Brainstorm better cardio logging + cardio program planning (in-week variety + long-term programs) — source: inbox(untriaged) → proof-of-work
  • [P2] Open-brackets artifact in the Matrix capture echo (📥 captured → - [ ] (...)) — source: inbox(untriaged) → matrix-bridge
  • [P2] Run full-eval on the signal-engine folder (evaluator/security/exerciser/doc/spec) — source: inbox(untriaged) → ten31-signal-engine
  • [P2] Gitea API automation for /new-project (replace manual create/publish gate) — source: inbox(untriaged) → standards (meta)
  • [P2] Run janitor agent on all projects — source: inbox(untriaged) → standards (meta)

From ROADMAPs

  • [P2] 6× full-eval hardening: X-Forwarded-For rate-limit bypass; dependency advisories; admin UI split from public API; webhook-endpoint allowlist; runtime-prepared SQL migration; rate_buckets reaper — source: keysat
  • [P2] Design-contract cleanup from 2026-06-16 audit (3 gold-as-fill CTA blockers, structural consolidation, token gaps) — source: keysat
  • [P2] @fastify/static 8.3.0 → ≥9.1.3 (path-traversal advisories) + re-test — source: premier-gunner
  • [P2] Input validation: reject unknown metric kind, validate calendar dates, 400 on bad metric_id — source: premier-gunner
  • [P2] Tests: record-recompute direction, streak math, migration idempotency — source: premier-gunner
  • [P2] 7× known debt: operator-internal strings leak to cloud; credit over-spend TOCTOU on licensed installs; multi-mode tenant can spend operator's Gemini key; metadata cache for GET /api/history; dependency CVEs; no tests on risky files; smaller hardening (unsanitized IDs, schema validation, file size) — source: recap
  • [P2] 5× tech debt (EVALUATION.md): test-coverage gap (swap state machine/proxies/SSH/StartOS); lockfile + dependency floors; HTTP 500 handling; NGC API key on cmdline; global mutable catalog race — source: spark-control
  • [P2] Guard mmss() against NaN/∞ — source: ten31-transcripts
  • [P2/P3] SessionController state-machine tests + extraction — source: ten31-transcripts

P3

Untriaged inbox

  • [P3] AGENTS.md endpoint list mis-describes POST /relay/analyze ({transcript}→sections); actual route takes {prompt} → standard envelope — source: inbox(untriaged) → recap-relay
  • [P3] Operator-onboarding agent (sibling to onboarding-tester, operator journey; needs clean StartOS service-install room) — source: inbox(untriaged) → standards (meta)

From ROADMAPs

  • [P3] No CI / doc-drift cluster — source: keysat
  • [P3] Code health (refactor-scout): delete 3 confirmed-dead functions; extract column consts; large-function splits (DEFER, gated on characterization tests first) — source: keysat
  • [P3] CSRF token; cross-category metric guard; logout without session; consistent 404s; validate category color — source: premier-gunner
  • [P3] Security & hardening: verify proxy forwards real client IPs; CSP unsafe-eval; /api/health info disclosure; rate-limit map leak; shorter/configurable sessions; text max-length; unify JSON-parse pattern — source: proof-of-work
  • [P3] README stale; deprecated @app.on_event; packaging placeholders + broken docs link; body/upload size limits; startup crash on bad VLLM_PORT — source: spark-control
  • [P3] manifest.json sha256; unauthenticated LAN backend — source: ten31-transcripts
  • [P3] Request-size caps; invoice-ID hijack; container root user; in-memory auth rate-limit reset; repo hygiene (old .s9pk, cookies.txt); StartOS registry submission; doc reconciliation — source: recap
  • [P3] Matrix voice-note transcription (Spark Control Whisper, if endpoint exists) — source: ten31-database
  • [P3+] Security tail (no /relay/* rate limiting, root container, dashboard innerHTML XSS, TLS verify, debug leaks); packaging (prune 126 version files, pin yt-dlp, Dockerfile, manifest, no README); /relay/health stale 0.2.11; doc fixes — source: recap-relay

Unprioritized — needs triage (ROADMAP backlog with no explicit priority signal)

  • keysat: rail-preference editing UI; agent-delegable payment-provider connect (approved, not urgent); onboarding doc-harness Stage 2 (gated; Stage 1 complete); Start9 Community Registry submission; registry version-retention (research-agent task); StartOS-native notifications/health-checks for internal failures; Elastic License v2 vs custom (parked); re-test KEYSAT_INTEGRATION.md; multi-profile webhook routing regression test (adjudicated → DO, low blast radius); reorder entitlements catalog
  • recap: persist provider preference server-side; apply Export menu to clip-collection panel; CI lint+type-check; surface failed auto-queue items; Zaprite recurring card billing (BLOCKED on Zaprite); close architecture-simplification gaps (8,10,5/6-partial); decide Max tier-quota default; refactoring backlog (extract subscription engine [test-first], /api/process pipeline, sweepAndRefreshTrial middleware, transcript coalescers)
  • recap-relay: speaker-tool polish (re-infer names after recluster, renumber after merge, preserve unpolished base, async re-polish, merge provenance); empty analysis section at window boundary; audit live upload→merge→recluster→repolish pipeline; palette.css from tokens
  • proof-of-work: tiered AI prompt formatting; keep MODEL_MENU/PRICES current; fix publish.sh Step-3 registry no-op; build for arm; community-registry submission (4 blockers); adherence tracking; export/import polish + CSV round-trip; charts/progress views; design-cleanup batch; hygiene (legacy s9pk, drop bcryptjs, workout-planner/ scratch)
  • premier-gunner: "Log another" (multiple same-category sessions/day); km/h unit option; per-metric direction toggle; Phase 3 AI coach (deferred); password UX under StartOS; packaging hygiene; other arches
  • spark-control: Gemma-4-26B vision (deferred); Qwen3.5-122B reasoning upgrade (candidate); parakeet long-audio guard (deferred); audio-endpoint concurrency sweep; echo cancellation + LLM referee for speaker naming; Qdrant auth+snapshots; observability; API-key auth; second audio worker; per-model vLLM flags from UI; Spark host update actions; Open WebUI integration
  • ten31-database: W1b nurture-gap automation (deferred); conversational NL edits in Matrix intake; LLM-judge fuzzy-match re-ranker; email-proposal review API audit; outreach detector; Squarespace form-submissions; intake "search NL-query on no-match"; email-capture learn-from-reject; pre-compile JSX (drop runtime Babel)
  • ten31-signal-engine: frontier-fan-out H6; estimator rework (H4); build real resolver (stub); extend claim-type weighting to §7.1 power-infra; Job A scorers; MD&A targeting; complete Strike reflexivity demo; confirm materiality of own_network sources; BTC Sessions (Ben Perrin); River image-PDF OCR; corpus expansion; automated test suite; episode-pipelining; corpus-management UI; expose pipeline tunables; daily digest email; forward live operation; Start9 s9pk packaging
  • ten31-transcripts: Meet faint-blue-border detection; geometric screen-share exclusion; speaker-view/spotlight layout; Zoom/Teams ring/hue gating; 1:1 Signal audio-pill fallback; accessibility-tree name hook; Jitsi support; self mic-channel cleanup; adaptive chunk sizing; per-app recording control; constrain recap reading width; SwiftLint/SwiftFormat decision; UserDefaults env-var shadowing
  • matrix-bridge: intent-routing brain (D8, Qwen3 dispatcher); thread-based session continuity; Nextcloud/CalDAV output integration; E2EE (D9, libolm); delete vestigial phase-0 branch
  • standards (meta): cross-repo quality-gate standard (linters/hooks/CI, item 1); deterministic inbox-surfacing SessionStart hook (item 3); thread inbox-check line into bootstrapping (item 4)

Not yet pushed down (inbox — exists nowhere but the inbox)

recap-relay

  • [P1] Analyze-phase hang jams hardware FIFO slot (full root-cause + 2-part fix + unit test in the inbox note), 2026-06-20
  • [P3] AGENTS.md /relay/analyze request-shape wording fix, 2026-06-15
  • [P2] Add Gemini 3.5 to model selection, 2026-06-16

recap

  • [P2] Verify cloud background subscription skip post-core-decoupling, 2026-06-20
  • [P2] Add Gemini 3.5 to model selection, 2026-06-16

ten31-database

  • [P2] Email auto-capture only on to:/from: match (not cc), 2026-06-20
  • [P2] Camera icon in top bar for business-card capture, 2026-06-20
  • [P2] Backup-history minimize + chevron, 2026-06-18
  • [P2] Screen refresh preserve current tab, 2026-06-18

spark-control

  • [P2] Redesign software logo/icon, 2026-06-18
  • [P2] Dashboard card for ten31 CRM / intake bot, 2026-06-18

proof-of-work

  • [P2] Cardio logging + program planning, 2026-06-19

matrix-bridge

  • [P2] Open-brackets artifact in capture echo, 2026-06-19

ten31-signal-engine

  • [P2] Run full-eval on the folder, 2026-06-16

standards (meta)

  • [P2] Gitea API automation for /new-project, 2026-06-14
  • [P2] Run janitor agent on all projects, 2026-06-16
  • [P3] Operator-onboarding agent, 2026-06-16

Proposed new projects (inbox new: items — awaiting /new-project bootstrap)

  • new:embedded-links-reader [P2] — give the app an article/blog URL; it scrapes the links the author embedded, reads them, and summarizes them, 2026-06-14
  • new:portfolio-scraper [P2] — track portfolio companies for podcasts, tweets, founder appearances, news; deliver a digest via email or another interface, 2026-06-14
  • new:personal-website [P2] — personal website hosted on Start9 Pages, served on clearnet via StartTunnel; HTML site, Claude Design styling, gather design inspiration, 2026-06-16

Gaps

  • recap-relay state vs. reality: the repo's Current state reads healthy (v0.2.127, 79 tests green) but a confirmed P1 multi-hour outage (analyze-hang) is captured in the inbox and is not yet reflected or fixed in the repo. The immediate operational unblock (restart recap-relay) recurs until the code fix lands. Highest-divergence item this round.
  • recap ↔ recap-relay coupling: the recap subscription-skip P2 was surfaced while diagnosing the relay analyze-hang; both reference recaps.cc/api/sub-check-log. They are separate issues but share a diagnostic.
  • Non-git folders under ~/Projects: 13 folders are not git repos and were skipped (see header). Some look like dormant project ideas (e.g. "satoshi-sleep (need to add code)", ten31-command-center, one-river, website-landing). This is the standards ROADMAP item-6 residual ("non-git-folder sweep") — none are tracked or readable as projects yet.
  • No CI anywhere: keysat, recap, proof-of-work, ten31-signal-engine, spark-control all explicitly note absent/partial CI; ten31-signal-engine and ten31-database have no automated suite for parts. This recurs as the standards cross-repo quality-gate item (item 1).
  • Stale roundup index drift: previous STATUS.md snapshot is dated 2026-06-18, but the standards AGENTS.md "Latest /roundup" line says 2026-06-16 — the index is stale relative to the actual file. Activity since 06-18 (keysat :62, ten31-database :101103, recap 0.2.162, recap-relay dashboard redesign, the P1 capture) lands in this one.
  • All 11 readers succeeded; no repo was missing AGENTS.md.
Reference in New Issue View Git Blame Copy Permalink