docs: weekly update — 2026-06-06#114
Merged
Merged
Conversation
…se-preserving IdentityMismatchError Sources: - encryption4all/postguard-js#86 (DecryptFileResult shape change, onDownloadProgress) - encryption4all/postguard-js#84 (IdentityMismatchError cause preservation)
Source: encryption4all/postguard-js#82 (re-throw on tier 3, console.warn on tier 2)
Sources: - encryption4all/postguard-website#244 (STAGING) - encryption4all/postguard-website#247 (GLITCHTIP_DSN) - encryption4all/postguard-website#255 (SITE_URL)
rubenhensen
approved these changes
Jun 15, 2026
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
Weekly docs drift sweep for encryption4all changes merged 2026-05-30 .. 2026-06-06.
postguard-js (2.0.0 release)
DecryptFileResultshape change in/sdk/js-decryption:filesis nowArray<{ name; blob }>(wasstring[]);download()no longer takes a filename argument and fans out one browser download per entry. The raw ZIP is still available onblob. Source: encryption4all/postguard-js#86.onDownloadProgressdecrypt parameter in/sdk/js-decryption: fires on every chunk during streaming download+decrypt with0–100, orundefinedwhen the server omittedContent-Length. Source: encryption4all/postguard-js#86.IdentityMismatchErrorpreserves.causefor non-AbortError failures in/sdk/js-decryption. Callers debugging a transient failure that surfaces as a mismatch can inspecterr.causefor the underlying network/WASM error.AbortErrorpasses through as-is. Source: encryption4all/postguard-js#84.createEnvelopefailure semantics clarified in/sdk/js-email-helpers: tier 2 keeps the local-attachment fallback andconsole.warns on Cryptify rejection; tier 3 has no fallback and now re-throws the underlying typed error instead of silently returning an envelope withattachment: nullplus a body link pointing at a non-existent UUID. Source: encryption4all/postguard-js#82.postguard-website
/repos/postguard-website. The website reads a second tier of flags at page load fromAPP_CONFIG(served bystatic/config.js, overridable via Terraform ConfigMap in deployed environments). DocumentsSITE_URL,BUSINESS_URL,FF_BUSINESS,STAGING, andGLITCHTIP_DSNwith defaults and meaning, plus the build-time vs runtime distinction. Sources: encryption4all/postguard-website#244, encryption4all/postguard-website#247, encryption4all/postguard-website#255.Skipped
IrmaAuthRequest/pg.sign.yivi. Already covered by encryption4all/postguard-docs#113 (merged 2026-06-02), which documents the SDK type hierarchy and includes the PKG wire-format JSON.sealRawchunk-collection refactor. Internal perf, identical output bytes.X-PostGuardversion,Reply-To,Auto-Submitted, multipart/alternative, inline-CID logo) + disclosed-sender-name rendering. Server-rendered email internals; no integrator-facing API surface in the docs site to update.Test plan
npx vitepress build docs— cleandocs/.vitepress/dist/sdk/js-decryption.htmlcontainsonDownloadProgress,docs/.vitepress/dist/repos/postguard-website.htmlcontainsGLITCHTIP_DSN,docs/.vitepress/dist/sdk/js-email-helpers.htmlcontains the tier-3 failure note.Update 2026-06-13 (changes merged 2026-06-06 .. 2026-06-13)
postguard-js
/sdk/js-decryption.unsealAndCollectpreviously discarded the unseal result and fell back to the public identity, soFriendlySender.attributesonly ever held the sender's email. The fix surfaces the attributes signed under the private signing identity (name, mobile, dateofbirth, …). Source: encryption4all/postguard-js#89.postguard-website
/downloadtrust-confirmation gate in/repos/postguard-website. The download page now decrypts into in-memory blobs and pauses on a confirmation step before any file is written to disk; the recipient sees the file list and verified sender, then keeps or discards. An email-only sender raises a weak-identity warning. Source: encryption4all/postguard-website#258.