Open
Description
Problem
The .lumentis folder contains metadata necessary for advanced features like diff mode, but may also include sensitive transcript data that should not be committed.
Concerns
- Diff mode and other advanced features are must-haves
- Transcript data can be highly sensitive and should be protected
- The wizard is already lengthy, so adding more questions should be avoided
Tradeoffs
- committing full
.lumentisdata enables advanced features but risks exposing sensitive info - excluding
.lumentisentirely protects sensitive data but loses out on advanced features - splitting
.lumentisbalances features and protection but requires careful implementation
Solution
We will split out sensitive parts of .lumentis folder and only commit the rest:
- move input data out of
.lumentis/wizard.json-.lumentis/sensitive-inputs/raw-data - move "questions for user to answer" data out as well -
.lumentis/sensitive-inputs/clarifying-questions.md - add "no extra fields" zod validator for
.lumentis/wizard.jsonto ensure the sensitive inputs can't accidentally end up in there - maybe add some docs (would be cool if there was some cool to do that)
Misc
Based on discussion in this PR
Metadata
Metadata
Assignees
Labels
No labels