Skip to content

fix: pre-presentation cleanup — auth, README accuracy, privacy, CI#3

Merged
RexOwenDev merged 1 commit into
mainfrom
fix/pre-presentation-cleanup
Apr 27, 2026
Merged

fix: pre-presentation cleanup — auth, README accuracy, privacy, CI#3
RexOwenDev merged 1 commit into
mainfrom
fix/pre-presentation-cleanup

Conversation

@RexOwenDev

Copy link
Copy Markdown
Owner

Summary

Full pre-presentation audit fixes. Every change is verified against actual code — nothing assumed.

🔴 Critical fixes

src/middleware.ts — created (auth was completely broken)
src/proxy.ts had the auth guard and security headers, but Next.js never loaded it because there was no middleware.ts. The dashboard, /import, and all edit routes were publicly accessible without login. Security headers (X-Frame-Options, HSTS, etc.) were not applied to any response. One-line re-export wires it correctly.

CLAUDE.md — client data stripped (was public)
The previous CLAUDE.md exposed: DesignShopp as a PE client, n8n instance URL, client project names (CMCA, Tornatech, CUAL), workflow IDs, and internal file paths. All n8n/client sections removed. Stack section updated to match reality. Rule 7 corrected (was wrong about proxy.ts vs middleware.ts).

🟡 Accuracy fixes

README.md — 4 Tiptap references removed
Tiptap had 0 hits in a full repo search — it is not installed and not used anywhere. Four occurrences updated to "Custom block editor" / "Block editor": architecture diagram, Stack table, Features table, screenshot caption. Also added middleware.ts to the Project Structure tree.

🟢 Polish

.github/workflows/ci.yml — created
Runs npm ci && npm test on every push and PR to main. Backs up the "40 tests, ~330ms" README claim with a live green badge.

.gitignoredocs/superpowers/ added
Prevents AI planning artifacts from being re-committed to the public repo.


One manual step after merging

The docs/superpowers/ files are already-tracked and need to be removed from git history locally:

git rm -r --cached docs/superpowers/
git commit -m "chore: untrack internal AI planning artifacts"
git push

Files changed

  • src/middleware.ts — new (1 line)
  • CLAUDE.md — stripped to project rules only
  • README.md — 4 Tiptap → block editor replacements
  • .gitignoredocs/superpowers/ added
  • .github/workflows/ci.yml — new CI workflow

@vercel

vercel Bot commented Apr 27, 2026

Copy link
Copy Markdown

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Actions Updated (UTC)
proposal-studio Error Error Apr 27, 2026 3:04pm
proposal-studio-3xl1 Error Error Apr 27, 2026 3:04pm
proposal-studio-k6rd Error Error Apr 27, 2026 3:04pm

Request Review

@RexOwenDev RexOwenDev merged commit 7dc5ec9 into main Apr 27, 2026
4 of 7 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant