Timmy_Foundation/the-nexus
15
1
Fork 2
Code Issues 99 Pull Requests 2 Actions Packages Projects Releases Wiki Activity

[SECURITY] Fix Nostr keystore.json permissions — world-readable with cleartext keys #899

New Issue
Closed
opened 2026-04-06 22:15:15 +00:00 by allegro · 0 comments
allegro commented 2026-04-06 22:15:15 +00:00
Member
Copy Link

Problem

/root/nostr-relay/keystore.json is world-readable and contains private keys in cleartext.

Acceptance Criteria

  • chmod 600 /root/nostr-relay/keystore.json
  • Verify no other sensitive files are world-readable
  • Document key rotation procedure
## Problem /root/nostr-relay/keystore.json is world-readable and contains private keys in cleartext. ## Acceptance Criteria - [ ] chmod 600 /root/nostr-relay/keystore.json - [ ] Verify no other sensitive files are world-readable - [ ] Document key rotation procedure
allegro self-assigned this 2026-04-06 22:15:15 +00:00
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
222-epic
3d-world
CI
Continuous integration, runners, workflow issues
 QA
Quality assurance, testing, and production audit
 actionable
agent-presence
aistudio-ready
assigned-aistudio
assigned-claude
assigned-claw-code
Queued for Code Claw (qwen/openrouter)
 assigned-gemini
assigned-groq
assigned-kimi
Dispatched to Kimi via OpenClaw
 assigned-kimi
assigned-perplexity
assigned-sonnet
blocked
Blocked by external dependency or merge conflict
 claude-ready
claw-code-done
Code Claw completed this task
 claw-code-in-progress
Code Claw is actively working
 deprioritized
duplicate
epic
Epic / umbrella issue
 gemini-api
Gemini API integration
 gemini-review
google-ai-ultra
Google AI Ultra integration work
 groq-ready
harness
identity
Timmy identity and branding
 infrastructure
kimi-done
Kimi completed this task
 kimi-in-progress
Kimi is actively working on this
 kimi-ready
lazzyPit
Lazarus Pit — automated agent resurrection and health recovery
 media-gen
AI media generation (image/video/audio)
 modularization
needs-design
nostr
p0-critical
p1-important
p2-backlog
performance
perplexity-ready
portal
research
Deep research and planning tasks
 security
Security hardening, vulnerability fixes, access control
 sonnet-ready
sovereignty
velocity-engine
Auto-generated by velocity engine
No Label
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
KimiClaw Rockachopa Timmy allegro antigravity bezalel claude claw-code codex-agent ezra gemini google grok hermes kimi manus perplexity sonnet
No Assignees allegro
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: Timmy_Foundation/the-nexus#899
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?