☉ ARCHIVE MAP
// REQUIRES AUTHENTICATION
▶ AGENT DASHBOARD
VISITED
TRAVELED
COVERED
REPORTS
■ OPERATIONAL DIRECTIVES
v2.1.3DIRECTIVE 5.0.0 — WORLD RECON & XSS HARDENING
Interactive World Map deployed: click anywhere on the map to trigger reconnaissance scan via Nominatim reverse geocoding and RestCountries API. Full recon dossier renders country profile (capital, population, area, density, subregion, continent), operational intel (currency, languages, driving side, UN membership, landlocked status), border nations (clickable — open nested recon), timezones, and live conditions (weather, 3-day forecast, exchange rates via Open-Meteo and Open-ER-API). Practical Travel Intel module added: curated field operative guides for 20 countries (JP, BR, EG, NO, AU, KE, US, IN, IS, MA, TR, TH, DE, FR, IT, ES, GB, KR, MX, CO) covering airport-to-city transport, currency exchange advice, do’s & don’ts, safety/scam intel, and local hacks. XSS security hardening: all innerHTML template interpolation in recon dossier replaced with safe DOM builders (_createEl, _safeText, _createIntelItem, _createTextBlock). Dynamic values injected via textContent only. _renderTravelIntel (HTML string) replaced with _renderTravelIntelNode (DOM node). URL validation via _isSafeHttpUrl. SonarCloud code quality sweep: Math.random() replaced with crypto.getRandomValues for ID generation, parseFloat/parseInt migrated to Number.parseFloat/Number.parseInt, status constants extracted to eliminate duplicates, lang attributes added, void offsetHeight audit.
DIRECTIVE 4.0.0 — PRODUCTION SECURITY HARDENING
Full production security hardening deployed. XSS vulnerability eliminated: evidence captions and all dynamic content now escaped via textContent/escapeHtml before DOM injection. innerHTML replaced with safe DOM API (createElement/replaceChildren) in Live Conditions module. Client-side rate limiter (token bucket) enforced on comments (10/60s), feedback (3/5min), and evidence uploads (5/60s). Server-side rate limiting via PostgreSQL triggers and check_rate_limit() function with automatic window cleanup. Security audit log table (security_log) tracks all service_role actions: account creation, profile status changes (REDACTED), comment verifications, and rate limit violations. Severity levels: INFO, WARN, CRIT, SECURITY_VIOLATION. Storage RLS hardened: evidence and avatar buckets locked to agent-scoped folder access. Overseer gets cross-agent read access. File upload validation: MIME type whitelist, 10MB size cap, empty file rejection, file extension sanitization. Legacy admin script (reset-password.mjs) with hardcoded credentials replaced by secure-auth-admin.mjs: env-only secrets, interactive hidden password input, recovery mode (email link) and force-password mode, preflight user verification, daily rotating audit logs with 30-day retention, production safety guard. .env.example template added. .gitignore expanded to block all .env variants, logs, IDE files, and build artifacts. All security errors return in system format: [SECURITY_VIOLATION]: ACCESS_BLOCKED_BY_OVERSEER.
FIELD HARDENING — ACCESSIBILITY, MOBILE OPS & DEPLOYMENT
Full ARIA accessibility deployed: roles, labels, and live regions across all interactive elements. Keyboard navigation protocol: Arrow keys between tabs, Escape to close drawers, Home/End support. Skip-to-content link and screen reader utilities (.sr-only) for covert operatives. Respects prefers-reduced-motion and forced-colors system directives. Mobile responsive overhaul: left panel converts to slide-out drawer at 768px breakpoint with backdrop overlay (tap or Escape to dismiss). Touch-optimized bottom nav with 52px minimum targets. Adaptive CSS Grid switches from 2-column sidebar to single-column mobile layout. 100dvh viewport for full-screen mobile ops. Skip Intro button with “Always skip intro” checkbox (localStorage persistence) plus inline skip during boot typing. Boot terminal repositioned to top-left terminal layout within CRT frame (absolute positioning). Map loading accelerated: staggered invalidateSize() calls + MutationObserver detecting app visibility post-boot sequence. Dossier card text visibility improved with larger fonts and better contrast. Green/cyan text on light paper backgrounds corrected. Vercel static deployment configured (vercel.json, .vercelignore). README documentation with tech stack badges and authenticated screenshots.
EXPANSION PACK — ACHIEVEMENTS, WATCHLIST & LOCKOUT
New database tables: achievements (merit badges with UNIQUE per-user constraint) and user_locations (personal visited/planned watchlist). Agent profiles gain “status” column — REDACTED status triggers full-screen ACCESS DENIED lockout with harsh alarm, scanlines, and red flicker. Disconnect button signs out and reloads. Overseer can set any agent to REDACTED via RLS policy. Dramatic Leaflet flyTo (2s duration) on dossier open with chromatic glitch effect on arrival. Achievement engine auto-grants: FIRST_SIGNAL (first login), FIRST_DOSSIER (first dossier opened), FIELD_REPORTER (first comment), EVIDENCE_COLLECTOR (first upload). All achievements push [INFO] notifications to Comm Uplink. Supabase helpers added for achievements, user locations, and profile status management.
THE “LIVED-IN TERMINAL” REDESIGN
Full visual overhaul. CRT monitor frame wraps the entire interface with thick bezel, rounded corners, and layered box-shadows — the app now feels like a physical military terminal. Dark desk surface behind with scattered classified papers (CLASSIFIED, REDACTED, TOP SECRET, EYES ONLY). Map upgraded to blue-green military tint with visible terrain and country borders. Tactical lines shifted from green to red dashed arcs. Radar sweep circles deployed over Europe, Asia-Pacific, Africa, and South America. Map pins enlarged with distinct icons: camera (accomplished), shield (permitted), eye (surveillance). Floating legend panel with glass-dark backdrop replaces bottom bar legend. Dossier panel enhanced with metal paperclip, flag-circle element, and status pill buttons (ENTRY PERMITTED / UNDER SURVEILLANCE). Identity verification overlay on fresh login with typewriter scan: NEURAL LINK → RETINAL PATTERN → IDENTITY CONFIRMED, CRT power-off flicker transition. Overseer gets gold “GLORY TO THE OVERSEER” line. Coffee ring stains, red-ink handwritten notes (Vetted, Incomplete Data, Watch this Sector), aged parchment gradient. Bottom nav tabs redesigned with SVG icons (home, pin, folder, image, envelope). Feedback input now parchment-textured. Footer social links in column layout. System Log records AUTH_PROTOCOL_SUCCESS on login. Full Amber Mode compatibility for all new elements. Responsive breakpoints for tablet and mobile.
IDENTITY VERIFICATION & TACTILE DOSSIER
Post-authentication identity scan overlay with typewriter animation and CRT power-off flicker. Overseer receives gold “GLORY TO THE OVERSEER. ARCHIVE UNLOCKED.” line. Dossier panel gains coffee ring stains, red-ink handwritten annotations, and aged parchment gradient for paper-wear effect. Rock Salt handwriting font loaded. System Log records auth success with role on session start.
PROGRESSION OVERHAUL & NOTIFICATION SYSTEM
Expanded rank hierarchy: INITIATE → OPERATIVE → FIELD AGENT → SPECIAL ENVOY → VETERAN → SECTOR COMMANDER. Multi-source XP rewards: +25 account creation, +50 dossier open, +30 field report, +100 evidence upload. XP progress bar with next-rank indicator in sidebar. Radar SVG icon replacing bell notification with CSS pulse on unread. System Log dropdown with timestamped [INFO]/[URGENT]/[SYSTEM] entries. Low-frequency teletype blip on dropdown open. Full Amber Mode compatibility for all new elements.
THE VAULT EXPANSION & DEEP PROTOCOL EGGS
Classified intelligence vault deployed: Entry Protocols, Logistics & Extraction, Local Lore & Conduct per country dossier. Comments restyled as live data stream with [AGENT_ID]: tags. Overseer verification stamps on field reports. Tactical upload feedback with low-bandwidth simulation. Two deep protocol eggs embedded in the system — one geographic, one sequential. Find them, Agent.
CORE PROGRESSION & CLEARANCE LOGIC
Dynamic XP accumulation system — +50 XP per new dossier decryption. Rank progression: OPERATIVE → FIELD AGENT at 500 XP with full-screen terminal upgrade notification. Overseer role recognized as permanent administrative status with gold UI treatment and [ SYSTEM ADMINISTRATOR ] badge. Real-time sidebar XP synchronization with Supabase persistence.
VISUAL DECRYPTOR & FIELD INTELLIGENCE
Scanline overlay on dossier photos. “NO VISUAL INTEL” breathing pulse. Archival decryption scramble effect on field reports with real-time status indicator. Infiltration time estimates and SIGNAL: ENCRYPTED system badge. Live coordinate tracker on tactical map. Full Amber Mode compatibility.
INTELLIGENCE DOSSIER PROTOCOL
Standardized popup dossiers with real-time coordinates, Document IDs (GEA-XXXXX), timestamps, and Field Briefing metadata (Threat Level, Local Scrip, Extraction). Pip-Boy tactile audio feedback on marker interaction. Secret terminal command deployed — type the word to find it, Agent.
CORE POWER STABILIZED
Database connection protocols optimized. Clearance log system enhanced with INFO/WARN/CRIT tactical dispatches.
INTELLIGENCE DISPATCH INTEGRATED
Resend SMTP configured. All field agents now receive encrypted dossier verification via email. Terminal-style email templates deployed.
CRT TACTICAL INTERFACE DEPLOYED
Full CRT vignette, sweeping scanline animation, tactical map connections (Great Circle lines), ESC key navigation, evidence photo rotation.
FIELD EVIDENCE SYSTEM ONLINE
Photo/video upload with drag & drop. Corrupted data placeholder for empty evidence. Evidence gallery with 1:1 aspect ratio.
DOSSIER SYSTEM ACTIVATED
Country dossiers with paper texture, stamps with ink blend, regional color themes, intercepted messages, real-time comments system.
SYSTEM INITIALIZED
Boot sequence, agent authentication, Leaflet tactical map, Supabase integration, agent profiles with XP and clearance levels.
█ END OF DIRECTIVES. STANDBY FOR FURTHER ORDERS.