Clarify timestamp format used in hash calculations

Added comprehensive documentation to make it crystal clear that: - Timestamps are Unix epoch timestamps (seconds since 1970-01-01 00:00:00 UTC) stored as floats - Hash input format is "{timestamp}:{content}" with float-to-string conversion - Example: "1702345678.123456:Suspicious process detected" - Full float precision is preserved, ensuring forensic tamper-evidence Updated documentation in: - trace/models/__init__.py: Added field comments and detailed docstring for calculate_hash() - trace/crypto.py: Added comprehensive docstring for hash_content() with examples - CLAUDE.md: Added detailed explanation in Integrity System section
2025-12-20 13:02:21 +00:00 · 2025-12-14 20:45:22 +00:00
parent bfefb42761
commit 06b7680982
3 changed files with 41 additions and 1 deletions
--- a/CLAUDE.md
+++ b/CLAUDE.md
@@ -145,6 +145,14 @@ The codebase is organized into focused, single-responsibility modules to make it

 **Integrity System**: Every note automatically gets:
 1. SHA256 hash of `timestamp:content` (via `Note.calculate_hash()`)
+   - **Timestamp Format**: Unix epoch timestamp as float (seconds since 1970-01-01 00:00:00 UTC)
+   - **Hash Input Format**: `"{timestamp}:{content}"` where timestamp is converted to string using Python's default str() conversion
+   - **Example**: For content "Suspicious process detected" with timestamp 1702345678.123456, the hash input is:
+     ```
+     1702345678.123456:Suspicious process detected
+     ```
+   - This ensures integrity of both WHAT was said (content) and WHEN it was said (timestamp)
+   - The exact float precision is preserved in the hash, making timestamps forensically tamper-evident
 2. Optional GPG clearsign signature (if `pgp_enabled` in settings and GPG available)

 **Tag System**: Regex-based hashtag extraction (`#word`)