We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
wiki(v1.100.1b.D): GOTH/UI narrative cleanup — close the retirement track Completes the wiki narrative cleanup for the retired Web GUI surface (nftban-ui + nftban-ui-auth + GOTH packages). Pattern applied across the 5 affected pages: - Active tables/sections describe current (post-removal) state. - A single 'Historical note (<= v1.100.0)' block links to the archive page for full context, replacing scattered inline retirement notes. - Archive pages remain verbatim (intentional historical record). Per-page changes: Deprecations-v190.md - Web GUI entry: status -> 'RETIRED — removal complete', list full A/B/C1/C2/D removal stage chain, note CLI surface removed in C2. - Sampler entry: marked DEPRECATED orphan (consumer was nftban-ui). - GUI Cache Exporter: marked PENDING REMOVAL (D2 deletes the file). - GOTH UI Architecture entry: marked RETIRED with v1.x clarification. Binary-Verification-SLSA.md - Active binaries table reduced to nftban-core only. - Historical note paragraph added below. Security-Architecture.md - 'Web GUI access:' subsection collapsed into a Historical note. - 'nftban-ui.service / nftban-ui-auth.*' line dropped from nftban-group authorization service list. - Permission matrix: 'Access Web GUI' row dropped. - 'Web GUI access: Yes (read-only)' line for auditor: dropped. - 'access GUI' bullet from panel-group cannot-do list: dropped. - 'GUI Login Fails' troubleshooting subsection (pamtest + systemctl status nftban-ui*): dropped. - User-example comment lines: 'CLI, Web GUI' -> 'CLI'. - Group description: 'humans, CLI, Web GUI' -> 'humans, CLI'. Systemd-Units-Overview.md - nftban-ui.service / nftban-ui-auth.service rows removed from Non-Timer Services table. - Historical note paragraph added below. FHS-Compliance.md - /usr/lib/nftban/bin/ row: dropped inline 'nftban-ui retired' note (binary not present in current tree). - nftban-ui.service row dropped from systemd units table. - 'Web GUI' dropped from nftban-group permissions cell. Web-Panel-Compatibility.md - 'Access Web GUI' bullet removed from panel-group cannot-do list (the only conflation with the retired nftban Web GUI surface). - cPanel/Plesk/DA panel content untouched. Closes the GOTH/UI documentation track. Archive pages unchanged.
wiki(v1.100.1b.A): Web GUI + nftban-ui retirement notices + archive page Add archive/Web-GUI-and-nftban-ui-retired.md as the consolidated historical record (what was retired, retirement schedule, operator impact, transitional handling, why). Add inline "Retired in v1.100.1b.A" block-quote notices to the 5 active wiki pages that explicitly mention nftban-ui or the Web GUI: - Binary-Verification-SLSA.md - Security-Architecture.md - Systemd-Units-Overview.md - FHS-Compliance.md - Deprecations-v190.md (formal deprecation entry under "Deprecated Components", not just an inline notice) Per locked wiki rule: - Web-Panel-Compatibility.md NOT touched (operator panels, distinct surface from the retired nftban Web GUI) - No broad architecture rewrite - jail→filter not applied to wiki (pre-survey found 0 hits) - _Sidebar.md NOT touched (no direct GUI link; only "Web Panel Compatibility" entry which references the unrelated panel page) Notice format follows the locked block-quote template (b1): > **Retired in v1.100.1b.A.** ... See archive/Web-GUI-and-nftban-ui-retired. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
wiki: system cohesion — connect install→schema→systemd→operations lifecycle Systemd page: - Added 'Role in System Architecture' section - Systemd = execution layer, NOT authority - Failure propagation: timer stops → feeds stale → enforcement degrades - Operators must rely on validator, not service status Schema page: - Added 'Lifecycle Connection' section - Connects install→validator→timers→operations chain - Links findings to Security Operations Guide - Cross-links to Installation and Operations Installation Guide: - Added 'What the Installer Creates' section - Links to Schema page for full structural contract - Connects Phase 5 (VALIDATE) to schema expectations All pages now express one coherent system, not 4 separate docs. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
wiki: rewrite Metrics + Systemd Units + Security Operations (v1.85 aligned) Metrics & Evidence Model: - Full counter catalog (31 IPv4, 32 IPv6) with evidence classes - 6 interpretation rules from v1.81 vocabulary - Per-module evidence mapping table - Exporter architecture (Prometheus textfile + JSON) - Shared counter attribution rules Systemd Units & Timers: - All 28 services + 19 timers documented - Correct schedule: maintenance=15min (was wrong), watchdog=120s - Correct user: maintenance=root (was wrong) - Timer liveness validator check (VAL-TIMER-001/002) - Dependency chain documented - Corrects 3 wrong facts from Track B audit (B-13, B-14) Security Operations Guide: - 8 real operator scenarios with kernel-first diagnosis - Decision tree for DEGRADED state - Evidence-based procedures (no fabricated examples) - Shared counter attribution warnings - Emergency SSH lockout recovery - Corrects fabricated logrotate example from Track B (B-16) Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
docs: align wiki with v1.39.0 release - Update version references across 8 pages (v1.18-v1.34 → v1.39.0) - Add dual-set architecture (blacklist_manual_* hash sets from v1.33.0) - Update nft schema with blacklist_manual_ipv4/ipv6 sets and input chain rules - Fix CLI path /usr/sbin/nftban → /usr/bin/nftban - Update Go package paths pkg/ → internal/ (v1.36.0 boundary hardening) - Update project statistics: 269K LOC, 311 Go files, 261 shell scripts, 71 packages - Remove stale audit status table and version history from Home.md - Mark v1.33.0 set separation as delivered in Performance-Benchmarks - Add Bot Guard and Commit-Confirm to key features list - Clean up version-specific annotations (v1.21.4+, v1.31.0, etc.) Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
docs: Update to v1.19.0 — version refs, audit status, project stats - Home.md: Version 1.16.0 → 1.19.0, audit status updated (0 critical/high) - Configuration-Reference.md: Version refs updated - Performance-Benchmarks.md: Version refs updated - Metrics-Architecture.md: Version refs updated - Suricata-IDS-Integration.md: Version refs updated - Systemd-Units-Overview.md: Version refs updated - NEW: Project-Statistics.md — codebase stats, CI pipeline, security audit Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
docs: Update all documentation to v1.16.0 - OpenSSF 7+ milestone Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
docs: Update version references to 1.15.0 - Update 9 files from v1.12.6 to v1.15.0 - Remove incorrect NFTBAN_VERSION from example config (version is set automatically, not user-configurable) Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
docs: Update version references and remove marketing language - Replace "intelligent" with factual terms (automated, signature-based) - Update version references from v1.10.0/v1.11.0 to v1.12.6 - 9 files updated Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
docs: Update to v1.10.0 + refresh code statistics Version: 1.9.4 → 1.10.0 Shell: 207 files → 204 files, ~118K → ~113K lines Go: 218 files → 228 files, ~75.5K → ~81K lines Total: ~193.5K → ~194K lines
fix(wiki): Fix Mermaid diagrams for GitHub rendering - Remove paths with / from node labels (causes lexical errors) - Remove <br/> tags from node labels (not supported) - Use quoted simplified labels instead - Add path reference tables where paths were removed Fixed files: - Architecture-Overview.md (component diagram, config flow) - Health-Check-Architecture.md (security model diagram) - Systemd-Units-Overview.md (service dependency diagram) - API-Handlers-Map.md (request flow, auth flow)
docs(wiki): Add Feb 2026 security audit documentation New pages from security audit: - Security-Audit-Summary.md - Audit findings and risk matrix - Code-Quality-Report.md - Dead code and complexity analysis - Implementation-Roadmap.md - 5-phase remediation plan - Health-Check-Architecture.md - Auto-heal system design - API-Handlers-Map.md - REST API endpoint reference - Systemd-Units-Overview.md - Complete systemd unit reference - Architecture-Overview.md - System components and data flow - CLI-Command-Tree.md - Visual CLI command hierarchy Updated pages: - Home.md - Merged audit status with quick start guide - _Sidebar.md - New sidebar navigation structure Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>