-
Notifications
You must be signed in to change notification settings - Fork 3
Issues
is:issue state:open
is:issue state:open
Issue creation is restricted in this repository
Search results
OBS-001A2 — Disable unapproved Firebase Analytics collection
area:firebaseFirebase services and dataFirebase services and dataarea:privacyPersonal data, consent, minimization, retention, and privacy operationsPersonal data, consent, minimization, retention, and privacy operationsarea:webWeb application and hostingWeb application and hostingpriority:P1High-priority follow-upHigh-priority follow-upsize:SSmall focused issueSmall focused issuestatus:in-progressClaimed and actively being implementedClaimed and actively being implementedtype:securitySecurity or privacy boundarySecurity or privacy boundaryStatus: Open.CI-001D — Prove backend-first staging and deploy the profile repair
area:authAuthentication and authorizationAuthentication and authorizationarea:ciContinuous integration and deploymentContinuous integration and deploymentarea:firebaseFirebase services and dataFirebase services and dataarea:webWeb application and hostingWeb application and hostingneeds-external-configRequires provider console or external configurationRequires provider console or external configurationpriority:P0Launch blocker or urgent security riskLaunch blocker or urgent security risksize:MMedium multi-file issueMedium multi-file issuestatus:proposedDesigned but dependencies or decisions remainDesigned but dependencies or decisions remaintype:operationsOperational setup or runbookOperational setup or runbooktype:reliabilityReliability and recoveryReliability and recoveryStatus: Open.#136 In Run-MPRC/Run-MPRC.github.io;CI-001C — Configure protected short-lived Firebase deployment identity
area:ciContinuous integration and deploymentContinuous integration and deploymentarea:firebaseFirebase services and dataFirebase services and dataneeds-external-configRequires provider console or external configurationRequires provider console or external configurationpriority:P0Launch blocker or urgent security riskLaunch blocker or urgent security risksize:MMedium multi-file issueMedium multi-file issuestatus:blocked-ownerRequires an owner or external decisionRequires an owner or external decisiontype:operationsOperational setup or runbookOperational setup or runbooktype:securitySecurity or privacy boundarySecurity or privacy boundaryStatus: Open.#133 In Run-MPRC/Run-MPRC.github.io;EVENTS-001A — Define the canonical public event view and approved source contract
area:adminAdministrative workflowsAdministrative workflowsarea:firebaseFirebase services and dataFirebase services and dataarea:webWeb application and hostingWeb application and hostingpriority:P1High-priority follow-upHigh-priority follow-upsize:SSmall focused issueSmall focused issuestatus:blocked-ownerRequires an owner or external decisionRequires an owner or external decisiontype:architectureArchitecture and contract designArchitecture and contract designtype:securitySecurity or privacy boundarySecurity or privacy boundaryStatus: Open.#121 In Run-MPRC/Run-MPRC.github.io;AUTH-MAIL-002 — Make account-email delivery states honest and recoverable
area:authAuthentication and authorizationAuthentication and authorizationarea:firebaseFirebase services and dataFirebase services and dataarea:webWeb application and hostingWeb application and hostingbugSomething isn't workingSomething isn't workingpriority:P1High-priority follow-upHigh-priority follow-upsize:SSmall focused issueSmall focused issuestatus:proposedDesigned but dependencies or decisions remainDesigned but dependencies or decisions remaintype:reliabilityReliability and recoveryReliability and recoverytype:testingTest infrastructure and quality gatesTest infrastructure and quality gatesStatus: Open.#120 In Run-MPRC/Run-MPRC.github.io;AUTH-MAIL-001 — Brand and authenticate Firebase Authentication email
area:authAuthentication and authorizationAuthentication and authorizationarea:firebaseFirebase services and dataFirebase services and dataneeds-external-configRequires provider console or external configurationRequires provider console or external configurationpriority:P0Launch blocker or urgent security riskLaunch blocker or urgent security risksize:SSmall focused issueSmall focused issuestatus:blocked-ownerRequires an owner or external decisionRequires an owner or external decisiontype:operationsOperational setup or runbookOperational setup or runbooktype:securitySecurity or privacy boundarySecurity or privacy boundaryStatus: Open.#119 In Run-MPRC/Run-MPRC.github.io;AUTH-002A — Retire the legacy static-key membership sync before manual onboarding
area:authAuthentication and authorizationAuthentication and authorizationarea:firebaseFirebase services and dataFirebase services and dataarea:membershipMembership lifecycle and reconciliationMembership lifecycle and reconciliationneeds-external-configRequires provider console or external configurationRequires provider console or external configurationpriority:P0Launch blocker or urgent security riskLaunch blocker or urgent security risksize:SSmall focused issueSmall focused issuestatus:proposedDesigned but dependencies or decisions remainDesigned but dependencies or decisions remaintype:operationsOperational setup or runbookOperational setup or runbooktype:securitySecurity or privacy boundarySecurity or privacy boundaryStatus: Open.MEMBERS-ROSTER-001 — Add officer-only member roster view and safe CSV export
area:adminAdministrative workflowsAdministrative workflowsarea:firebaseFirebase services and dataFirebase services and dataarea:membershipMembership lifecycle and reconciliationMembership lifecycle and reconciliationarea:privacyPersonal data, consent, minimization, retention, and privacy operationsPersonal data, consent, minimization, retention, and privacy operationsarea:webWeb application and hostingWeb application and hostingpriority:P1High-priority follow-upHigh-priority follow-upsize:MMedium multi-file issueMedium multi-file issuestatus:proposedDesigned but dependencies or decisions remainDesigned but dependencies or decisions remaintype:featureProduct capabilityProduct capabilitytype:operationsOperational setup or runbookOperational setup or runbooktype:securitySecurity or privacy boundarySecurity or privacy boundaryStatus: Open.MEMBERS-ADMIN-001 — Add audited officer membership association and manual activation
area:adminAdministrative workflowsAdministrative workflowsarea:authAuthentication and authorizationAuthentication and authorizationarea:firebaseFirebase services and dataFirebase services and dataarea:membershipMembership lifecycle and reconciliationMembership lifecycle and reconciliationpriority:P0Launch blocker or urgent security riskLaunch blocker or urgent security risksize:MMedium multi-file issueMedium multi-file issuestatus:proposedDesigned but dependencies or decisions remainDesigned but dependencies or decisions remaintype:featureProduct capabilityProduct capabilitytype:securitySecurity or privacy boundarySecurity or privacy boundaryStatus: Open.MEMBERS-DUES-001 — Build server-authoritative annual membership checkout and renewal
area:firebaseFirebase services and dataFirebase services and dataarea:membershipMembership lifecycle and reconciliationMembership lifecycle and reconciliationarea:stripeStripe payments and financial lifecycleStripe payments and financial lifecyclepriority:P0Launch blocker or urgent security riskLaunch blocker or urgent security risksize:LLarge cross-boundary issueLarge cross-boundary issuestatus:proposedDesigned but dependencies or decisions remainDesigned but dependencies or decisions remaintype:architectureArchitecture and contract designArchitecture and contract designtype:featureProduct capabilityProduct capabilitytype:reliabilityReliability and recoveryReliability and recoveryStatus: Open.BACKEND-001 — Audit the Firebase cutover and approve legacy data disposition
area:authAuthentication and authorizationAuthentication and authorizationarea:firebaseFirebase services and dataFirebase services and dataarea:membershipMembership lifecycle and reconciliationMembership lifecycle and reconciliationarea:privacyPersonal data, consent, minimization, retention, and privacy operationsPersonal data, consent, minimization, retention, and privacy operationsneeds-external-configRequires provider console or external configurationRequires provider console or external configurationpriority:P0Launch blocker or urgent security riskLaunch blocker or urgent security risksize:SSmall focused issueSmall focused issuestatus:blocked-ownerRequires an owner or external decisionRequires an owner or external decisiontype:architectureArchitecture and contract designArchitecture and contract designtype:operationsOperational setup or runbookOperational setup or runbookStatus: Open.OPS-SEC-001 — Establish private security/privacy reporting and rehearse incident response
area:privacyPersonal data, consent, minimization, retention, and privacy operationsPersonal data, consent, minimization, retention, and privacy operationsneeds-external-configRequires provider console or external configurationRequires provider console or external configurationpriority:P0Launch blocker or urgent security riskLaunch blocker or urgent security risksize:XSOwner decision or very narrow changeOwner decision or very narrow changestatus:blocked-ownerRequires an owner or external decisionRequires an owner or external decisiontype:operationsOperational setup or runbookOperational setup or runbooktype:securitySecurity or privacy boundarySecurity or privacy boundaryStatus: Open.