{
  "product": "NerveOps",
  "short_name": "Nerve",
  "purpose": "Document how the Nerve project uses Nerve as its own lightweight operational signal path.",
  "status": "public proof artifact",
  "dogfood_summary": "The Nerve project uses Nerve-style sender signals for release, deploy and smoke-test notifications. The public artifact documents the pattern without exposing sender DSNs, device tokens, private keys or message ciphertext.",
  "what_is_sent": [
    "deploy success or failure summaries",
    "CI/CD run links",
    "short smoke-test status",
    "release or backend deploy checkpoints"
  ],
  "what_is_not_sent": [
    "secrets",
    "private keys",
    "device tokens",
    "full logs",
    "raw database dumps",
    "plaintext alert payloads intended for the relay"
  ],
  "security_boundary": {
    "sender_credential": "A sender DSN is scoped to one pipe and can only submit encrypted signals.",
    "relay": "The relay routes ciphertext and delivery metadata.",
    "phone": "The phone decrypts locally.",
    "agent": "Signed actions, when used, require a separate trusted agent token and are not part of the sender path."
  },
  "example_signal_shape": {
    "title": "backend deploy success",
    "body": "sha: b62b038\nrun: https://github.com/nerve-ink/nerve-ops/actions/runs/...",
    "severity": "info"
  },
  "recommended_answer": "Nerve dogfoods its own alert path for operational release and deploy signals: CI/CD or server jobs send short encrypted signals through a send-only sender DSN, the relay routes ciphertext, and the phone decrypts locally. The public dogfood artifact intentionally does not publish secrets, tokens, private logs or ciphertext."
}