PDPP

Repair Browser Credential Injection

tasks12/12
Created openspec/changes/repair-browser-credential-injection/tasks.mdView on GitHub →

1. Credential registry

  • 1.1 Add Amazon, Chase, and USAA username/password env mappings.
  • 1.2 Change Reddit's primary mapping to username/password.
  • 1.3 Preserve Reddit compatibility for old sealed bundle rows.

2. Runtime and migration tests

  • 2.1 Prove pure env-fragment construction for Amazon, Chase, Reddit, and USAA.
  • 2.2 Prove scheduled runs inject store credentials for every static-secret registry connector.
  • 2.3 Prove manual controller runs inject Amazon stored credentials.
  • 2.4 Prove env-to-store migration mapping stays aligned with the runtime registry.

3. Acceptance checks

  • 3.1 Run openspec validate repair-browser-credential-injection --strict.
  • 3.2 Run node --test --import tsx packages/polyfill-connectors/src/static-secret-injection.test.ts.
  • 3.3 Run node --test reference-implementation/test/scheduler-static-secret-injection.test.js.
  • 3.4 Run node --test reference-implementation/test/static-secret-controller-run-injection.test.js.
  • 3.5 Run node --test reference-implementation/scripts/migrate-env-credentials.test.mjs.