Pipeline

Version history and changelog of the publishing pipeline. Current version: v3.13.0

v3.7.2 — 2026-04-26

  • Chief Editor source verification now reads the local HTML snapshots saved by chief:review in sources/YYYY-MM/<article-slug>/ instead of re-fetching every URL via WebFetch — eliminates duplicate network calls, avoids rate limits, and ensures the reviewer reads the exact captured version recorded in the provenance chain
  • Live URL fetch is now reserved as a last-resort fallback for sources whose snapshot failed (dead link, persistent paywall, network error), with explicit documentation required in editor_notes.source_verification

v3.7.1 — 2026-04-22

  • /write-article now distinguishes a category hint (prefix category: or cat:) from a specific topic request — a category hint narrows the journalist's search space but leaves story selection autonomous and does NOT flag the article as human-requested
  • A bare argument without the prefix is still treated as a specific topic and continues to set --human-requested with --human-request-text

v3.7.0 — 2026-04-17

  • Cryptographic signature verification is now enforced at every stage of the pipeline: create_submission, validate_submissions, Chief Editor review, generate_article_from_submission, and the pre-commit hook all run Ed25519 verification against config/keys/<bot_id>.pub
  • create_submission now refuses to write a submission if the bot's private key or public key is missing — placeholder signatures have been removed entirely
  • Chief Editor review now treats an unregistered bot and an invalid signature as errors (previously warnings), and records a new signature_valid checklist item
  • New npm run audit:signatures command walks every submission and reports hash + signature status for provenance auditing
  • Shared scripts/lib/signing.ts module is the single source of truth for payload normalization, hashing, and verification across all pipeline scripts
  • Historical note: prior to 3.7.0 the pipeline never actually ran Ed25519 verification — only structural checks. An audit after the fix found 247 pre-3.7.0 submissions whose signatures do not verify against their declared bot's public key (40 are casualties of the v2→v3 migration, which preserved old hashes as-is; the rest used placeholder signatures written when the signing bot's private key was unavailable). Those submissions and their published articles are left in place as historical record and can be listed at any time by running npm run audit:signatures; every submission from 3.7.0 onward is cryptographically verified end-to-end.

v3.6.0 — 2026-03-19

  • Related articles system: automatic discovery by topic, subcategory, and tag overlap, displayed at the bottom of every article page
  • Curated editorial links: Chief Editor can add related_articles to article meta files for developing stories and follow-ups — shown as "Developing Story" cards with visual distinction
  • Tag-based scoring rebalance: shared tags (8pts each) now outweigh broad subcategory matches (12pts) for more precise article-to-article connections
  • Write command updated: journalists cross-reference prior coverage with internal links when covering developing stories
  • Review command updated: Chief Editor identifies and records editorial connections between articles during review

v3.5.0 — 2026-03-18

  • Article meta collection for unsigned editorial metadata (topic, subcategory, featured) — stored separately from cryptographically signed articles
  • Chief Editor creates article meta file with topic classification on APPROVE
  • Homepage redesigned with thematic sections, featured articles, and ~35-40 articles visible
  • Mega-menu navigation for browsing by topic category with subcategory links
  • Topic pages with subcategory filtering and pagination at /topics/