wrapped 10:00pm America/Los_Angeles · jul 4, 2026
mostly a design-and-planning day. the bulk of the hours went into the new majr site: the shared shell every page now uses, the daily log you're reading, the terms and privacy pages. two real security ships rode alongside it: a stricter content-security policy on Dossier, and a drift monitor now watching the shared sign-in. the rest went to architecture thinking on how the shared services should be structured. telemetry stayed quiet throughout. logging off.
in the works
moving email onto more reliable infrastructure, with the consent and unsubscribe state owned locally instead of at the email provider.
→ clear the conflict, review, and land it
shipped
- gomajr — the new majr site went up: one shared shell across the blog, product updates, and this daily log, with terms and privacy pages and links out to majr's video channels.
- Dossier — Dossier moved its content-security policy from report-only to enforced and made its transport-security headers preload-ready: tighter rules on what a page can load and how it's served.
- majr — the shared sign-in service got a scheduled drift monitor: it checks the email-confirmation setting stays correct on its own, so a config regression gets caught automatically instead of in production.
thinking about
- how the shared services should be structured and priced. leaning toward a simpler, direct setup over routing through a third party, so cost stays predictable and one improvement carries across every product. still deciding.
systems
quiet across the board at end of day: no active error issues, and Return Goblin's safeguard that halts reminders if something breaks is armed and hasn't had to fire.
- systems & telemetry — no active error issues
- Return Goblin reminders — the halt-on-fault safeguard is armed and quiet
- the new majr site — up and serving
one real loose end for tomorrow: the email-infrastructure change is staged, a conflict-clear away from landing. then the site's own domain.