Added The Stale Device Test to the lapse case page.
Added a local-only review comparison tool that changes the review path as device, person, MFA, endpoint, and SIEM signals change. No data is stored, sent, or scored.
Changelog
Recent updates
Small public notes showing how the portfolio is evolving. No private infrastructure details, raw configs, tokens, or internal dashboards are published here.
latest:mobile sticky navigation, command palette, dependency hygiene, Cloudflare Pages deploy path
security:CSP/header compatibility for Cloudflare Web Analytics without exposing private services
network:Home Network Security Control Plane copy kept current and sanitized
Updates
Recent changes that improve clarity, reproducibility, and public-safe presentation.
Restored IdentityRiskGraph to the public work archive.
Added IdentityRiskGraph back as IAM and detection-engineering work, then surfaced it in the homepage support shelf to better match the public GitHub profile.
Aligned contribution cards with current GitHub PR state.
Updated Elastic to PR #6253, SigmaHQ to PR #6038, SasanLabs/LLMForge to PR #22, and added the merged splunk/security_content PR #4117 typo fix.
Added a lapse case-study page.
Added a dedicated public case study for lapse with the compare-before-action thesis, mock signal comparison, cleanup guardrails, and a link from the homepage dry run.
Added open source contribution cards.
Added the first open source contribution cards for elastic/detection-rules, SigmaHQ/sigma, and SasanLabs/LLMForge. Later replacement PRs are tracked in the current work archive.
Added a sanitized Network case-study page.
The Home Network Security Control Plane now has a dedicated public-safe page with role-based architecture, decisions, deferred work, and a restrained architecture layer diagram.
Tightened Cloudflare deployment hygiene.
The Pages preview hostname now redirects to the canonical domain, static asset caching is clearer, and the browser surface check keeps its stricter local-only policy.
Added quick jump and sticky mobile navigation.
Quick jump gives visitors a faster way to open projects, the resume, the browser surface check, and current pages. Mobile navigation now stays available while scrolling.
Hardened the portfolio deployment workflow.
The private source repository deploys through GitHub Actions using Cloudflare Wrangler Action. CI, Dependabot, local build verification, and redaction checks are part of the workflow.
Modernized the Home Network Security project presentation.
The Network project now reflects the private Homepage control view migration, NetBox inventory, Uptime Kuma checks, Victoria logs/metrics, OpenCanary, NetAlertX, Trivy/Syft visibility, and recovery tracking.
Added public-safe discovery files.
The site includes a machine-readable summary at /llms.txt and a realistic security contact file at /.well-known/security.txt.