@striae-org/striae 4.0.0 → 4.0.2

package/app/routes/auth/login.tsx

@@ -22,14 +22,12 @@ import { Toast } from '~/components/toast/toast';
 import { Icon } from '~/components/icon/icon';
 import styles from './login.module.css';
 import { Striae } from '~/routes/striae/striae';
-import { getUserData, createUser } from '~/utils/permissions';
+import { getUserData, createUser } from '~/utils/data';
 import { auditService } from '~/services/audit';
-import { generateUniqueId } from '~/utils/id-generator';
-import { evaluatePasswordPolicy } from '~/utils/password-policy';
-import { buildActionCodeSettings } from '~/utils/auth-action-settings';
-import { userHasMFA } from '~/utils/mfa';
+import { generateUniqueId } from '~/utils/common';
+import { evaluatePasswordPolicy, buildActionCodeSettings, userHasMFA } from '~/utils/auth';
 
-const APP_CANONICAL_ORIGIN = 'https://app.striae.org';
+const APP_CANONICAL_ORIGIN = 'https://striae.app';
 const SOCIAL_IMAGE_PATH = '/social-image.png';
 const SOCIAL_IMAGE_ALT = 'Striae forensic annotation and comparison workspace';
 const LOGIN_PATH_ALIASES = new Set(['/auth', '/auth/', '/auth/login', '/auth/login/']);
@@ -51,8 +49,8 @@ const getCanonicalPath = (pathname: string): string => {
 const getAuthMetaContent = (mode: string | null, hasActionCode: boolean): AuthMetaContent => {
   if (!mode && !hasActionCode) {
     return {
-      title: 'Striae | Secure Login for Firearms Examiners',
-      description: 'Sign in to Striae to access your forensic annotation workspace, case files, and comparison tools.',
+      title: 'Striae: A Firearms Examiner\'s Comparison Companion',
+      description: 'Sign in to Striae to access your comparison annotation workspace, case files, and review tools.',
       robots: 'index,follow,max-image-preview:large,max-snippet:-1,max-video-preview:-1',
     };
   }
@@ -582,7 +580,7 @@ export const Login = () => {
           <Link 
             viewTransition
             prefetch="intent"
-            to="https://striae.org" 
+            to="https://striae.app" 
             className={styles.logoLink}>
             <div className={styles.logo} />
           </Link>

package/app/routes/auth/passwordReset.tsx

@@ -4,7 +4,7 @@ import { sendPasswordResetEmail, signOut } from 'firebase/auth';
 import { auth } from '~/services/firebase';
 import { handleAuthError, ERROR_MESSAGES } from '~/services/firebase/errors';
 import { auditService } from '~/services/audit';
-import { buildActionCodeSettings } from '~/utils/auth-action-settings';
+import { buildActionCodeSettings } from '~/utils/auth';
 import styles from './passwordReset.module.css';
 
 interface PasswordResetProps {
@@ -120,7 +120,7 @@ export const PasswordReset = ({ isModal, onBack }: PasswordResetProps) => {
       <Link 
         viewTransition
         prefetch="intent"
-        to="https://striae.org" 
+        to="https://striae.app" 
       >
         <div className={styles.logo} />
       </Link>

package/app/routes/striae/striae.tsx

@@ -7,8 +7,8 @@ import { Toast } from '~/components/toast/toast';
 import { getImageUrl } from '~/components/actions/image-manage';
 import { getNotes, saveNotes } from '~/components/actions/notes-manage';
 import { generatePDF } from '~/components/actions/generate-pdf';
-import { fetchUserApi } from '~/utils/user-api-client';
-import { resolveEarliestAnnotationTimestamp } from '~/utils/annotation-timestamp';
+import { fetchUserApi } from '~/utils/api';
+import { resolveEarliestAnnotationTimestamp } from '~/utils/ui';
 import { type AnnotationData, type FileData } from '~/types';
 import { checkCaseIsReadOnly } from '~/components/actions/case-manage';
 import styles from './striae.module.css';

package/app/services/audit/audit-export-signing.ts

@@ -1,11 +1,11 @@
 import type { User } from 'firebase/auth';
-import { signAuditExportData } from '~/utils/data-operations';
+import { signAuditExportData } from '~/utils/data';
 import {
   AUDIT_EXPORT_SIGNATURE_VERSION,
   type AuditExportFormat,
   type AuditExportSigningPayload,
   type AuditExportType
-} from '~/utils/audit-export-signature';
+} from '~/utils/forensics';
 
 export interface AuditExportContext {
   user: User;

package/app/services/audit/audit-export.service.ts

@@ -1,6 +1,5 @@
 import { type ValidationAuditEntry, type AuditTrail } from '~/types';
-import { calculateSHA256Secure } from '~/utils/SHA256';
-import { type AuditExportType } from '~/utils/audit-export-signature';
+import { calculateSHA256Secure, type AuditExportType } from '~/utils/forensics';
 import { AUDIT_CSV_ENTRY_HEADERS, entryToCSVRow } from './audit-export-csv';
 import { buildAuditReportContent } from './audit-export-report';
 import { type AuditExportContext, signAuditExport } from './audit-export-signing';

package/app/services/audit/audit.service.ts

@@ -9,7 +9,7 @@ import type {
   AuditResult,
   PerformanceMetrics
 } from '~/types';
-import { generateWorkflowId } from '../../utils/id-generator';
+import { generateWorkflowId } from '~/utils/common';
 import {
   fetchAuditEntriesForUser,
   persistAuditEntryForUser

package/app/services/firebase/index.ts

@@ -6,7 +6,7 @@ import {
     //connectAuthEmulator,    
  } from 'firebase/auth';
 import firebaseConfig from '~/config/firebase';
-import { getAppVersion } from '~/utils/version';
+import { getAppVersion } from '~/utils/common';
 
 export const app = initializeApp(firebaseConfig, "Striae");
 export const auth = getAuth(app);

package/app/utils/api/index.ts

@@ -0,0 +1,4 @@
+export * from './data-api-client';
+export * from './image-api-client';
+export * from './pdf-api-client';
+export * from './user-api-client';

package/app/utils/auth/index.ts

@@ -0,0 +1,5 @@
+export * from './auth';
+export * from './auth-action-settings';
+export * from './mfa';
+export * from './mfa-phone';
+export * from './password-policy';

package/app/utils/common/index.ts

@@ -0,0 +1,3 @@
+export * from './batch-operations';
+export * from './id-generator';
+export * from './version';

package/app/utils/{version.ts → common/version.ts}

@@ -1,4 +1,4 @@
-import packageJson from '../../package.json';
+import packageJson from '../../../package.json';
 
 export const getAppVersion = () => {
   return packageJson.version;

package/app/utils/{data-operations.ts → data/data-operations.ts}

@@ -6,19 +6,19 @@
 
 import type { User } from 'firebase/auth';
 import { type CaseData, type AnnotationData, type ConfirmationImportData } from '~/types';
-import { fetchDataApi } from './data-api-client';
+import { fetchDataApi } from '../api';
 import { validateUserSession, canAccessCase, canModifyCase } from './permissions';
 import {
   type ForensicManifestData,
   type ForensicManifestSignature,
   FORENSIC_MANIFEST_VERSION
-} from './SHA256';
-import { CONFIRMATION_SIGNATURE_VERSION } from './confirmation-signature';
+} from '../forensics/SHA256';
+import { CONFIRMATION_SIGNATURE_VERSION } from '../forensics/confirmation-signature';
 import {
   AUDIT_EXPORT_SIGNATURE_VERSION,
   type AuditExportSigningPayload,
   isValidAuditExportSigningPayload
-} from './audit-export-signature';
+} from '../forensics/audit-export-signature';
 
 // ============================================================================
 // INTERFACES AND TYPES

package/app/utils/data/index.ts

@@ -0,0 +1,2 @@
+export * from './data-operations';
+export * from './permissions';

package/app/utils/{permissions.ts → data/permissions.ts}

@@ -1,7 +1,7 @@
 import type { User } from 'firebase/auth';
 import type { UserData, ExtendedUserData, UserLimits, ReadOnlyCaseMetadata } from '~/types';
 import paths from '~/config/config.json';
-import { fetchUserApi } from './user-api-client';
+import { fetchUserApi } from '../api';
 
 const MAX_CASES_REVIEW = paths.max_cases_review;
 const MAX_FILES_PER_CASE_REVIEW = paths.max_files_per_case_review;

package/app/utils/forensics/index.ts

@@ -0,0 +1,5 @@
+export * from './SHA256';
+export * from './audit-export-signature';
+export * from './confirmation-signature';
+export * from './export-verification';
+export * from './signature-utils';

package/app/utils/ui/index.ts

@@ -0,0 +1,2 @@
+export * from './annotation-timestamp';
+export * from './style';

package/functions/api/image/[[path]].ts

@@ -37,7 +37,23 @@ function extractProxyPath(url: URL): string | null {
   }
 
   const remainder = url.pathname.slice(routePrefix.length);
-  return remainder.length > 0 ? remainder : '/';
+  if (remainder.length === 0) {
+    return '/';
+  }
+
+  const normalizedRemainder = remainder.startsWith('/') ? remainder : `/${remainder}`;
+  const encodedPath = normalizedRemainder.slice(1);
+
+  try {
+    const decodedPath = decodeURIComponent(encodedPath);
+    if (decodedPath.length > 0) {
+      return decodedPath.startsWith('/') ? decodedPath : `/${decodedPath}`;
+    }
+  } catch {
+    // Keep legacy behavior for non-encoded paths.
+  }
+
+  return normalizedRemainder;
 }
 
 function resolveImageWorkerToken(env: Env): string {

package/package.json

@@ -1,20 +1,18 @@
 {
   "name": "@striae-org/striae",
-  "version": "4.0.0",
+  "version": "4.0.2",
   "private": false,
   "description": "Striae is a specialized, cloud-native platform designed to streamline forensic firearms identification by providing an intuitive environment for digital comparison image annotation, authenticated confirmations, and automated report generation.",
   "license": "Apache-2.0",
-  "homepage": "https://www.striae.org",
+  "homepage": "https://github.com/striae-org/striae/wiki",
   "repository": {
     "type": "git",
     "url": "https://github.com/striae-org/striae.git"
   },
-  "funding": [    
-    {
-      "type": "patreon",
-      "url": "https://www.patreon.com/striae"
-    }
-  ],
+  "funding": {
+    "type": "github",
+    "url": "https://github.com/sponsors/striae-org"
+  },
   "bugs": {
     "url": "https://github.com/striae-org/striae/issues"
   },
@@ -114,7 +112,7 @@
     "@react-router/cloudflare": "^7.13.1",
     "exceljs": "^4.4.0",
     "firebase": "^12.10.0",
-    "isbot": "^5.1.35",
+    "isbot": "^5.1.36",
     "jszip": "^3.10.1",
     "react": "^19.2.4",
     "react-dom": "^19.2.4",
@@ -123,23 +121,23 @@
   "devDependencies": {
     "@react-router/dev": "^7.13.1",
     "@react-router/fs-routes": "^7.13.1",
-    "@types/react": "^19.1.10",
-    "@types/react-dom": "^19.1.7",
-    "@typescript-eslint/eslint-plugin": "^8.54.0",
-    "@typescript-eslint/parser": "^8.56.1",
+    "@types/react": "^19.2.14",
+    "@types/react-dom": "^19.2.3",
+    "@typescript-eslint/eslint-plugin": "^8.57.1",
+    "@typescript-eslint/parser": "^8.57.1",
     "autoprefixer": "^10.4.27",
-    "eslint": "^9.39.2",
+    "eslint": "^9.39.4",
     "eslint-import-resolver-typescript": "^4.4.4",
     "eslint-plugin-import": "^2.32.0",
-    "eslint-plugin-jsx-a11y": "^6.7.1",
-    "eslint-plugin-react": "^7.37.4",
+    "eslint-plugin-jsx-a11y": "^6.10.2",
+    "eslint-plugin-react": "^7.37.5",
     "eslint-plugin-react-hooks": "^7.0.1",
-    "postcss": "^8.5.6",
-    "tailwindcss": "^3.4.0",
+    "postcss": "^8.5.8",
+    "tailwindcss": "^3.4.19",
     "typescript": "^5.9.3",
     "vite": "^6.4.1",
     "vite-tsconfig-paths": "^6.1.1",
-    "wrangler": "^4.73.0"
+    "wrangler": "^4.74.0"
   },
   "overrides": {
     "tar": "7.5.11",
@@ -155,4 +153,4 @@
     "node": ">=20.0.0"
   },
   "packageManager": "npm@11.11.0"
-}
+}

package/public/.well-known/keybase.txt

@@ -0,0 +1,56 @@
+==================================================================
+https://keybase.io/stephenjlu
+--------------------------------------------------------------------
+
+I hereby claim:
+
+  * I am an admin of https://striae.app
+  * I am stephenjlu (https://keybase.io/stephenjlu) on keybase.
+  * I have a public key ASAKWYuLxhqhdePAuDulLzWWUusZk7mQi-1lMyjF8lsSbgo
+
+To do so, I am signing this object:
+
+{
+  "body": {
+    "key": {
+      "eldest_kid": "01200a598b8bc61aa175e3c0b83ba52f359652eb1993b9908bed653328c5f25b126e0a",
+      "host": "keybase.io",
+      "kid": "01200a598b8bc61aa175e3c0b83ba52f359652eb1993b9908bed653328c5f25b126e0a",
+      "uid": "ef43479353eb3b8be30c76fd0919c219",
+      "username": "stephenjlu"
+    },
+    "merkle_root": {
+      "ctime": 1773711528,
+      "hash": "9519e4709ef4b2ab7ea27c6633fd91e00989841d63cf53dd15500ccbec43152fdb37efd0cefcae90edcae7d84e2584620026334e98ef2feb36241c6aa38aca11",
+      "hash_meta": "a8ed0ac295c8a433c99b4606da6e569399fae2b052a5f8d053a2d735d110b265",
+      "seqno": 27471249
+    },
+    "service": {
+      "entropy": "e8nGKp/3/msv+czv8R/pIZOA",
+      "hostname": "striae.app",
+      "protocol": "https:"
+    },
+    "type": "web_service_binding",
+    "version": 2
+  },
+  "client": {
+    "name": "keybase.io go client",
+    "version": "6.6.0"
+  },
+  "ctime": 1773711539,
+  "expire_in": 504576000,
+  "prev": "20fa9a69a64b9008e2ba1d18171c4eda04d49fc68c2b419cf5156b78faa8b75b",
+  "seqno": 26,
+  "tag": "signature"
+}
+
+which yields the signature:
+
+hKRib2R5hqhkZXRhY2hlZMOpaGFzaF90eXBlCqNrZXnEIwEgClmLi8YaoXXjwLg7pS81llLrGZO5kIvtZTMoxfJbEm4Kp3BheWxvYWTESpcCGsQgIPqaaaZLkAjiuh0YFxxO2gTUn8aMK0Gc9RVrePqot1vEIOlO7j2uG/S+PR0TZqsul0pFPx7wKWbK+YYm6cWb9OQYAgHCo3NpZ8RAUVB1DF+DBdsDrp5BVL0eqUuueayhIrABHB63O9f9e03e8MJpZUAWdv8r7eLRcOoSf5p3I+CtsDgeyklUXy6oCKhzaWdfdHlwZSCkaGFzaIKkdHlwZQildmFsdWXEIH2d3PmZB6Yydgvkp783wyinfEsZBLRlgM2WXItXvkvTo3RhZ80CAqd2ZXJzaW9uAQ==
+
+And finally, I am proving ownership of this host by posting or
+appending to this document.
+
+View my publicly-auditable identity here: https://keybase.io/stephenjlu
+
+==================================================================

package/public/.well-known/security.txt

@@ -1,7 +1,6 @@
-Contact: mailto:info@striae.org
+Contact: mailto:security@striae.org
 Contact: https://github.com/striae-org/striae/security/advisories/new
 Expires: 2035-08-15T00:00:00.000Z
-Encryption: https://www.striae.org/.well-known/publickey.info@striae.org.asc
 Preferred-Languages: en
-Canonical: https://www.striae.org/.well-known/security.txt
-Policy: https://www.striae.org/security
+Canonical: https://striae.app/.well-known/security.txt
+Policy: https://striae.org/security