Revert "docs: add threat model and policy demos"

This reverts commit d9d62c1.

Author: haasonsaas

cmd/migrate/main.go

@@ -3,12 +3,11 @@ package main
 import (
 	"flag"
 	"log"
-	"os"
 
 	"github.com/golang-migrate/migrate/v4"
 	_ "github.com/golang-migrate/migrate/v4/database/postgres"
 	_ "github.com/golang-migrate/migrate/v4/source/file"
-	
+
 	"github.com/EvalOps/keep/pkg/secrets"
 )
 
@@ -24,7 +23,7 @@ func main() {
 
 	// Initialize secret management
 	secretHelper := secrets.NewHelperFromEnv()
-	
+
 	// Load database configuration
 	dbConfig := secretHelper.LoadDatabaseConfig()
 	databaseURL := secretHelper.BuildDSN(dbConfig)
@@ -40,24 +39,24 @@ func main() {
 	switch {
 	case *showVersion:
 		showCurrentVersion(m)
-		
+
 	case *force >= 0:
 		forceVersion(m, *force)
-		
+
 	case *direction == "up":
 		if *steps > 0 {
 			migrateSteps(m, *steps)
 		} else {
 			migrateUp(m)
 		}
-		
+
 	case *direction == "down":
 		if *steps > 0 {
 			migrateSteps(m, -*steps)
 		} else {
 			migrateDown(m)
 		}
-		
+
 	default:
 		log.Fatalf("Invalid direction: %s (use 'up' or 'down')", *direction)
 	}
@@ -68,7 +67,7 @@ func showCurrentVersion(m *migrate.Migrate) {
 	if err != nil {
 		log.Fatalf("Failed to get migration version: %v", err)
 	}
-	
+
 	log.Printf("Current migration version: %d", version)
 	if dirty {
 		log.Printf("Migration state is dirty (incomplete migration)")
@@ -117,7 +116,7 @@ func migrateSteps(m *migrate.Migrate, steps int) {
 	} else {
 		log.Printf("Rolling back %d migration steps...", -steps)
 	}
-	
+
 	if err := m.Steps(steps); err != nil {
 		if err == migrate.ErrNoChange {
 			log.Println("No migration changes to apply")

cmd/secrets/main.go

@@ -13,16 +13,16 @@ import (
 
 func main() {
 	var (
-		action      = flag.String("action", "get", "Action to perform: get, set, list, migrate")
-		secretType  = flag.String("type", "", "Secret manager type: env, ssm, vault, azure")
-		region      = flag.String("region", "", "AWS region for SSM")
-		prefix      = flag.String("prefix", "", "Secret prefix/namespace")
-		key         = flag.String("key", "", "Secret key")
-		value       = flag.String("value", "", "Secret value (for set action)")
-		format      = flag.String("format", "text", "Output format: text, json")
-		vaultAddr   = flag.String("vault-addr", "", "Vault server address")
-		vaultPath   = flag.String("vault-path", "", "Vault secret path")
-		azureURL    = flag.String("azure-url", "", "Azure Key Vault URL")
+		action     = flag.String("action", "get", "Action to perform: get, set, list, migrate")
+		secretType = flag.String("type", "", "Secret manager type: env, ssm, vault, azure")
+		region     = flag.String("region", "", "AWS region for SSM")
+		prefix     = flag.String("prefix", "", "Secret prefix/namespace")
+		key        = flag.String("key", "", "Secret key")
+		value      = flag.String("value", "", "Secret value (for set action)")
+		format     = flag.String("format", "text", "Output format: text, json")
+		vaultAddr  = flag.String("vault-addr", "", "Vault server address")
+		vaultPath  = flag.String("vault-path", "", "Vault secret path")
+		azureURL   = flag.String("azure-url", "", "Azure Key Vault URL")
 	)
 	flag.Parse()
 
@@ -195,8 +195,7 @@ func handleInit(secretType string) {
 }
 
 func printSSMSetup() {
-	fmt.Println(`
-AWS Systems Manager Parameter Store Setup:
+	fmt.Print(`AWS Systems Manager Parameter Store Setup:
 
 1. Install AWS CLI and configure credentials:
    aws configure
@@ -219,8 +218,7 @@ AWS Systems Manager Parameter Store Setup:
 }
 
 func printVaultSetup() {
-	fmt.Println(`
-HashiCorp Vault Setup:
+	fmt.Print(`HashiCorp Vault Setup:
 
 1. Start Vault server (development mode):
    vault server -dev
@@ -245,8 +243,7 @@ HashiCorp Vault Setup:
 }
 
 func printAzureSetup() {
-	fmt.Println(`
-Azure Key Vault Setup:
+	fmt.Print(`Azure Key Vault Setup:
 
 1. Create Key Vault:
    az keyvault create --name keep-secrets --resource-group keep-rg --location eastus

go.mod

@@ -11,14 +11,18 @@ require (
 	github.com/aws/aws-sdk-go-v2 v1.39.3
 	github.com/aws/aws-sdk-go-v2/config v1.31.13
 	github.com/aws/aws-sdk-go-v2/service/ssm v1.66.0
+	github.com/cenkalti/backoff/v4 v4.3.0
 	github.com/go-chi/chi/v5 v5.2.3
-	github.com/golang-migrate/migrate/v4 v4.19.0
+	github.com/golang-migrate/migrate/v4 v4.17.1
 	github.com/hashicorp/vault/api v1.22.0
 	github.com/jackc/pgx/v5 v5.7.6
 	github.com/prometheus/client_golang v1.23.2
 	github.com/rs/zerolog v1.34.0
 	go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.51.0
 	go.opentelemetry.io/otel v1.38.0
+	go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp v1.38.0
+	go.opentelemetry.io/otel/sdk v1.38.0
+	go.opentelemetry.io/otel/trace v1.38.0
 	tailscale.com v1.68.0
 )
 
@@ -42,15 +46,18 @@ require (
 	github.com/aws/smithy-go v1.23.1 // indirect
 	github.com/beorn7/perks v1.0.1 // indirect
 	github.com/bits-and-blooms/bitset v1.13.0 // indirect
-	github.com/cenkalti/backoff/v4 v4.3.0 // indirect
+	github.com/cenkalti/backoff/v5 v5.0.3 // indirect
 	github.com/cespare/xxhash/v2 v2.3.0 // indirect
 	github.com/coreos/go-iptables v0.7.1-0.20240112124308-65c67c9f46e6 // indirect
 	github.com/dblohm7/wingoes v0.0.0-20240119213807-a09d6be7affa // indirect
 	github.com/digitalocean/go-smbios v0.0.0-20180907143718-390a4f403a8e // indirect
+	github.com/felixge/httpsnoop v1.0.4 // indirect
 	github.com/fxamacker/cbor/v2 v2.5.0 // indirect
 	github.com/gaissmai/bart v0.4.1 // indirect
 	github.com/go-jose/go-jose/v4 v4.1.3 // indirect
 	github.com/go-json-experiment/json v0.0.0-20231102232822-2e55bd4e08b0 // indirect
+	github.com/go-logr/logr v1.4.3 // indirect
+	github.com/go-logr/stdr v1.2.2 // indirect
 	github.com/go-ole/go-ole v1.3.0 // indirect
 	github.com/godbus/dbus/v5 v5.1.1-0.20230522191255-76236955d466 // indirect
 	github.com/golang-jwt/jwt/v5 v5.3.0 // indirect
@@ -61,6 +68,7 @@ require (
 	github.com/google/uuid v1.6.0 // indirect
 	github.com/gorilla/csrf v1.7.2 // indirect
 	github.com/gorilla/securecookie v1.1.2 // indirect
+	github.com/grpc-ecosystem/grpc-gateway/v2 v2.27.2 // indirect
 	github.com/hashicorp/errwrap v1.1.0 // indirect
 	github.com/hashicorp/go-cleanhttp v0.5.2 // indirect
 	github.com/hashicorp/go-multierror v1.1.1 // indirect
@@ -115,6 +123,11 @@ require (
 	github.com/vishvananda/netlink v1.2.1-beta.2 // indirect
 	github.com/vishvananda/netns v0.0.4 // indirect
 	github.com/x448/float16 v0.8.4 // indirect
+	go.opentelemetry.io/auto/sdk v1.1.0 // indirect
+	go.opentelemetry.io/otel/exporters/otlp/otlptrace v1.38.0 // indirect
+	go.opentelemetry.io/otel/metric v1.38.0 // indirect
+	go.opentelemetry.io/proto/otlp v1.7.1 // indirect
+	go.uber.org/atomic v1.7.0 // indirect
 	go.yaml.in/yaml/v2 v2.4.2 // indirect
 	go4.org/mem v0.0.0-20220726221520-4f986261bf13 // indirect
 	go4.org/netipx v0.0.0-20231129151722-fdeea329fbba // indirect
@@ -130,6 +143,9 @@ require (
 	golang.org/x/tools v0.35.0 // indirect
 	golang.zx2c4.com/wintun v0.0.0-20230126152724-0fa3db229ce2 // indirect
 	golang.zx2c4.com/wireguard/windows v0.5.3 // indirect
+	google.golang.org/genproto/googleapis/api v0.0.0-20250825161204-c5933d9347a5 // indirect
+	google.golang.org/genproto/googleapis/rpc v0.0.0-20250825161204-c5933d9347a5 // indirect
+	google.golang.org/grpc v1.75.0 // indirect
 	google.golang.org/protobuf v1.36.8 // indirect
 	gvisor.dev/gvisor v0.0.0-20240306221502-ee1e1f6070e3 // indirect
 	nhooyr.io/websocket v1.8.10 // indirect