WIP: Ledger security release docs (2026.1)#329
Conversation
Greptile SummaryThis WIP PR adds 14 new documentation pages for the 2026.1 security release, covering post-quantum ML-DSA keys, zero-downtime consensus key rotation (staking and PoA), and Cosmos-KMS remote signing. It also updates existing pages (
Confidence Score: 5/5Safe to continue reviewing; all changes are documentation only with no executable code paths affected. Every changed file is an MDX documentation page or a work log entry. The procedural pages that are marked test-verified carry hidden verification comments with environment details. Incomplete sections (TMKMS migration skeleton, AWS/PKCS#11 backend, ML-DSA keygen) are consistently marked with noindex: true and explicit TODO comments, so unfinished content cannot reach readers. The only finding is a style guide violation in poa/api.mdx that follows the pre-existing bold-label pattern of that file and has no reader-facing impact. sdk/next/kms/migrate-from-tmkms.mdx has three skeleton sections (softsign key format, state migration, YubiHSM) that must be filled before the page can be published. sdk/next/enterprise/poa/api.mdx and sdk/next/keys/rotate-validator-key-poa.mdx are provisional against cosmos/cosmos-sdk#26590 and need re-verification at merge. Important Files Changed
|
|
Preview deployment for your docs. Learn more about Mintlify Previews.
💡 Tip: Enable Workflows to automatically generate PRs for you. |
docs(sdk): kms rotation guide, release-impact fixes, prerequisites pass Add rotate-key-remote-signer: rotate a consensus key held in Cosmos-KMS (second signer process, shadow node, pubkey from /status). Test-verified e2e on a localnet; includes the show-validator stray-key trap as a Danger. Release-impact fixes to existing pages: - run-production: replace the deprecated TMKMS walkthrough with Cosmos-KMS links and a deprecation note - keyring: correct key algorithms to secp256k1 + ml_dsa_65 via --key-type (was ed25519 via --algo), link the new keys pages, fix a broken in-page anchor - run-node: next-step links to key rotation and remote signing; jq links moved to jqlang.org Guide improvements: - complete, linked prerequisites on every keys/ and kms/ guide - migrate-validator-ml-dsa: step 2 split into labeled staking / PoA / remote signer paths with the exact deltas (PoA passes ml_dsa_65) - state-sync pointers on both shadow-node rotation pages - post-quantum-keys: EIP-7702/8051/8141 linked and corrected - Cosmos-KMS naming in prose, bare "kms" replaced with "the signer" - remote-signing next steps completed (resolves placeholder TODO)
|
@greptileai plz rereview |
WIP: Ledger security release docs (2026.1)
Documentation for the 2026.1 security release: post-quantum keys (ML-DSA),
zero-downtime consensus key rotation, and remote signing via Cosmos-KMS.
Every technical claim is code- or test-verified before its page merges.
Nav: three groups under Run a Node (SDK next): Key Rotation, Post-quantum Keys,
Remote Signing: Cosmos-KMS.
Key Rotation
Post-quantum Keys
Remote Signing: Cosmos-KMS
Module references and release-impact fixes
Upgrading
Verification
Five flows run end to end against local chains, commands exactly as published:
governance param change, staking rotation, ML-DSA account, kms file-backend
tutorial, and kms rotation. Each tested page carries a hidden verification
comment with environment and commits.
npx mint broken-linkscleanReview
project, FOU-739 to FOU-755): rotation set → Matt, ML-DSA + kms sets → Eric,
release notes → Alex. Open eng questions are tracked there, and as TODO(ERIC)/
TODO(MATT) comments in the pages.