feat: Add CMD+K command palette with ninja-keys integration
Implement a command palette accessible via CMD+K/Ctrl+K using the ninja-keys web component. Features include: - New /api/cmd-k endpoint serving dynamic CV entries (experiences, projects, courses) - Language-aware responses with 1-hour cache headers - Scroll-to-section functionality for quick navigation - Enhanced keyboard shortcuts modal with CMD+K documentation - Comprehensive test coverage for API and UI interactions Also includes cleanup of deprecated debug test files and various UI polish improvements to contact form, themes, and action bar components.
This commit is contained in:
juanatsap
@@ -14,7 +14,7 @@ A professional, bilingual CV site with server-side PDF generation, HTMX interact
|
||||
|
||||
**Open Source:** The code is MIT licensed and available for educational purposes. You're welcome to use it as a template or reference for your own projects. This repository is maintained as my personal CV site and may be modified without notice.
|
||||
|
||||
**Contributions:** This is a personal CV project and is feature-complete. I'm not seeking contributions, but you're welcome to use it as a template! If you find a critical security vulnerability, please follow the [responsible disclosure process](docs/HACK-CHALLENGE.md#-responsible-disclosure).
|
||||
**Contributions:** This is a personal CV project and is feature-complete. I'm not seeking contributions, but you're welcome to use it as a template! If you find a critical security vulnerability, please report it via email.
|
||||
|
||||
## 📑 Table of Contents
|
||||
|
||||
@@ -81,24 +81,7 @@ This project demonstrates **production-grade security** practices with multiple
|
||||
|
||||
**Security Rating: A- (Very Good)**
|
||||
|
||||
### Try to Hack Me Challenge! 🎯
|
||||
|
||||
Think you can break through these defenses? **I welcome ethical hackers and security researchers to test this site.**
|
||||
|
||||
**Challenge Categories:**
|
||||
1. **Browser-Only Bypass** - Submit a contact form using curl or Postman (Hard ⭐⭐⭐)
|
||||
2. **Rate Limit Bypass** - Exceed the rate limits without detection (Medium ⭐⭐)
|
||||
3. **Injection Challenge** - Execute code via XSS, command injection, or email header injection (Hard ⭐⭐⭐)
|
||||
4. **Bot Detection Bypass** - Submit as a bot without getting caught (Medium ⭐⭐)
|
||||
5. **CSRF Challenge** - Submit without a valid token (Hard ⭐⭐⭐)
|
||||
|
||||
**Documentation:**
|
||||
- **[SECURITY.md](docs/SECURITY.md)** - Complete security architecture and implementation details
|
||||
- **[HACK-CHALLENGE.md](docs/HACK-CHALLENGE.md)** - Full hacking challenge rules and guidelines
|
||||
|
||||
**Found a vulnerability?** Follow the [responsible disclosure process](docs/HACK-CHALLENGE.md#-responsible-disclosure).
|
||||
|
||||
**Hall of Fame:** Valid findings will be acknowledged publicly (with your permission).
|
||||
**Documentation:** See [SECURITY.md](docs/SECURITY.md) for complete security architecture and implementation details.
|
||||
|
||||
---
|
||||
|
||||
@@ -197,7 +180,6 @@ This project includes comprehensive documentation organized by purpose:
|
||||
|
||||
### 📋 Policies & Standards
|
||||
- **[SECURITY.md](docs/SECURITY.md)** - Complete security architecture, implementation, and testing guide
|
||||
- **[HACK-CHALLENGE.md](docs/HACK-CHALLENGE.md)** - "Try to Hack Me!" challenge for security researchers
|
||||
- **[PRIVACY.md](doc/PRIVACY.md)** - Privacy policy template and analytics guidance
|
||||
- **[CODE_OF_CONDUCT.md](CODE_OF_CONDUCT.md)** - Community standards (Contributor Covenant)
|
||||
- **[CONTRIBUTING.md](CONTRIBUTING.md)** - Contribution policy (personal project notice)
|
||||
@@ -244,7 +226,7 @@ Deployment guides available for:
|
||||
- `GO_ENV` - Environment (development/production)
|
||||
- `TEMPLATE_HOT_RELOAD` - Enable template hot-reload in development
|
||||
|
||||
**Security:** See [SECURITY.md](docs/SECURITY.md) for production deployment best practices and [HACK-CHALLENGE.md](docs/HACK-CHALLENGE.md) for penetration testing guidelines.
|
||||
**Security:** See [SECURITY.md](docs/SECURITY.md) for production deployment best practices.
|
||||
|
||||
## 🎨 Customization
|
||||
|
||||
@@ -306,8 +288,7 @@ This project is licensed under the **MIT License** - see the [LICENSE](LICENSE)
|
||||
## 💬 Questions or Issues?
|
||||
|
||||
- **Questions:** Feel free to fork and modify - this is a template!
|
||||
- **Security Issues:** See [HACK-CHALLENGE.md](docs/HACK-CHALLENGE.md) for reporting security vulnerabilities
|
||||
- **Security Research:** Read the [Try to Hack Me Challenge](docs/HACK-CHALLENGE.md) if you want to test the security
|
||||
- **Security Issues:** Report vulnerabilities via email
|
||||
- **Documentation:** Check [CUSTOMIZATION.md](doc/CUSTOMIZATION.md) and [DEPLOYMENT.md](doc/DEPLOYMENT.md)
|
||||
|
||||
## 🙏 Acknowledgments
|
||||
|
||||
Reference in New Issue
Block a user