v0.3.0

Mandatory Encrypted Vault

Credential storage is now always encrypted. The --no-vault opt-out has been removed — pacer auth init and pacer auth login both require a vault passphrase.

Vault architecture

Layer	Detail
Cipher	AES-256-GCM (unique 96-bit nonce per secret)
KDF	Scrypt (N=16384, r=8, p=1)
Salt	32-byte random, regenerated on passphrase change
Storage	~/.pacer/vault.json with 0600 permissions
Writes	Atomic via temp file + os.replace()

Breaking changes

• --no-vault flag removed from pacer auth init
• pacer auth login now prompts for vault passphrase (creates vault if none exists)
• Plaintext credential storage (config.env) is no longer offered

Bug fixes

• Parser fix — regex fallback (parse_docket_regex) captured </h3> closing tag as part of case number. Changed \S+ to [\w:\-\.]+ character class to match only valid case number characters.

Documentation

• Full Encrypted Vault section added to README with architecture, file structure, operations table, and Scrypt tuning env vars
• SECURITY.md updated with vault encryption details
• All stale config.env credential references removed

---

pip install pacer-cli==0.3.0

v0.2.1

What's Changed

Fixed

• Removed duplicate court-lookup.json entry in wheel that caused PyPI upload rejection on v0.2.0

Documentation

• pacer auth init is now the documented first step — interactive wizard with vault encryption
• Added pacer auth code command docs (TOTP generator with --watch mode)
• Added pacer parse text command docs (LLM-optimized plain text extraction)
• Command aliases table corrected: removed non-existent pacer auth alias, added cases, parties, find
• Encrypted vault documented in Configuration section
• CONTRIBUTING: fixed src/pacer_cli/ path and updated release process

Install

pip install pacer-cli==0.2.1

v0.2.0

First PyPI release as pacer-cli. See CHANGELOG.md for details.