Skip to content

chore(demos): refresh docs/demos for v0.9.1#99

Merged
rayketcham merged 2 commits into
mainfrom
chore/demo-refresh
Apr 21, 2026
Merged

chore(demos): refresh docs/demos for v0.9.1#99
rayketcham merged 2 commits into
mainfrom
chore/demo-refresh

Conversation

@rayketcham
Copy link
Copy Markdown
Contributor

@rayketcham rayketcham commented Apr 21, 2026

Summary

  • Purge 21 stale v0.8-era asciinema recordings (Tacoo Tuesday, Enterprise PKI, story-*/short-*/intro-* series, signing-service) that referenced removed ACME/EST/SCEP enrollment and a signing-service roadmap.
  • Record 4 fresh casts scoped to v0.9.1: cert-inspect, key-csr, tls-probe, hierarchy.
  • Update docs/demo.html demos array + default tab + hero stats + suite tags so the landing page matches current scope. Update README.md demos table to link the 4 new demos.
  • Add reproducible driver scripts under docs/demos/drivers/ so future rerecords aren't hand-typed.

Scope changes on the demo landing page

  • Hero: drop "enroll" from tagline; stats 19→17 commands, Protocols→Output Formats.
  • Suite card tags: drop ACME / EST / SCEP, add forbid(unsafe_code).
  • Suite card description: "enrollment protocols" → "CA hierarchy building".

Test plan

  • Open docs/demo.html in a browser, verify all 4 demos play and default tab (cert-inspect) loads correctly
  • Verify ?demo=key-csr, ?demo=tls-probe, ?demo=hierarchy URL params work
  • Verify README demo links resolve to the correct demo tab
  • Confirm CI green (rustfmt / clippy / tests unaffected — docs-only change)

Generated with Claude Code

rayketcham and others added 2 commits April 20, 2026 23:59
@rayketcham @claude
chore(demos): purge v0.8-era cast files, record fresh v0.9.1 demos
28a2b6e 
Replace 21 stale asciinema recordings (Tacoo Tuesday, Enterprise PKI, the
story-*/short-*/intro-* series, signing-service) that referenced
ACME/EST/SCEP enrollment flows and a signing-service roadmap — none of
which ship in v0.9.1. Recordings were also visually noisy and outdated.

Record 4 demos scoped to what v0.9.1 actually does:
- cert-inspect: probe fetch + cert show (text / openssl / forensic)
- key-csr: EC + ML-DSA-65 key gen, CSR with SANs
- tls-probe: probe check / server / lint against a live host, showing
  X25519 + ML-KEM-768 hybrid KEX
- hierarchy: pki validate / preview / build from TOML

Update docs/demo.html demos array + default key, and README demos table,
to reference the 4 new casts. Correct hero stats (19→17 commands,
Protocols→Output Formats) and suite tags (drop ACME/EST/SCEP, note
forbid(unsafe_code)) so the landing page matches current scope.

Drivers for reproducing the recordings live at docs/demos/ source; cast
files are v2 asciicast with 120x32 geometry.

Co-Authored-By: Claude <noreply@anthropic.com>
@rayketcham @claude
chore(demos): add reproducible driver scripts for cast recordings
f468bb4 
The v0.9.1 demo casts were recorded via these driver scripts — add them
under docs/demos/drivers/ so future rerecords are deterministic instead
of hand-typed. Each driver runs real pki commands with simulated typing
and brief narration.

Run one interactively:
  PKI_BIN=$(pwd)/target/release/pki bash docs/demos/drivers/cert-inspect.sh

Record a cast:
  asciinema rec --overwrite --cols 120 --rows 32 \
    -c "bash docs/demos/drivers/cert-inspect.sh" \
    docs/demos/cert-inspect.cast

Co-Authored-By: Claude <noreply@anthropic.com>
@rayketcham rayketcham merged commit d138a05 into main Apr 21, 2026
51 of 52 checks passed
@rayketcham rayketcham deleted the chore/demo-refresh branch April 21, 2026 01:36
rayketcham added a commit that referenced this pull request Apr 24, 2026
@rayketcham @claude
chore(release): v0.9.2 — PQC key-show fix + openssl parity CI gate
c6e3bc9 
Cuts v0.9.2 to capture three post-v0.9.1 fixes worth a tagged release:

- PQC key-show detection (#97 / #101): ML-DSA and SLH-DSA keys were
  misreported as "EC P-256" because the detector fell through to
  size-based heuristics on unrecognised PKCS#8 OIDs. Now resolved +
  guarded by tests/key_show_algorithms.rs.
- openssl parity CI (#101): openssl_parity.sh gaps closed and wired
  into .github/workflows/interop.yml so regressions page a pipeline,
  not a user.
- CI hardening + FIPS race fix + test coverage sweep (#98) and the
  v0.9.1 demo refresh (#99) already merged; this tag is the first
  release that carries all three together.

Lockfile shows rustls-webpki 0.103.13 (RUSTSEC-2026-0104 patched).

Co-Authored-By: Claude <noreply@anthropic.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@rayketcham