🗺️ Roadmap

Fire Shield development roadmap and upcoming features.

This roadmap outlines our vision for Fire Shield. Features and timelines may change based on community feedback and priorities.

Want to contribute? Check out our GitHub Issues or join the discussion!

✅ Recently Completed

v2.1.1 - Current Release (November 2025)

Core Features

• ✅ Bit-based Permission System - up to 10 million ops/sec, O(1) permission checks
• ✅ String-based Fallback System - Support for >31 permissions
• ✅ Wildcard Permissions - Pattern matching (admin:*, *:read, tenant:123:*)
• ✅ Deny Permissions - Explicit denials that override allows
• ✅ Audit Logging - 3 built-in loggers (Console, Buffered, Multi)
• ✅ Role Hierarchy - Level-based role inheritance with 17 methods
• ✅ State Serialization - Complete JSON export/import
• ✅ RBAC Builder - Fluent API with method chaining
• ✅ Zero Dependencies - No runtime dependencies, 15KB bundle

Framework Adapters (9+)

• ✅ Express v2.0.5 - Middleware with guards
• ✅ Fastify v2.0.5 - preHandler hooks
• ✅ Hono v2.0.5 - Edge runtime support
• ✅ Next.js v2.0.1 - App Router integration
• ✅ Nuxt v2.0.1 - Nuxt 3 module
• ✅ React v2.0.2 - Hooks & components
• ✅ Vue v2.0.8 - Composables, directives, router guards
• ✅ Angular v2.0.1 - Services, guards, directives
• ✅ Svelte v2.0.1 - Stores & actions

Testing & Documentation

• ✅ 241+ Test Cases - 100% pass rate, 2106+ lines
• ✅ VitePress Documentation - 50+ pages with interactive examples
• ✅ 12+ Example Files - Real-world patterns and use cases
• ✅ TypeScript 100% - Full type safety across all packages

✅ Recently Completed

v2.2.0 - Performance, Tooling & Deny Permissions (November 2025)

Core Improvements - ✅ 100% Complete

• ✅ Config file loading - RBAC.fromFile(), RBAC.fromJSON(), validation helpers (Phase 1.1)
• ✅ Permission caching layer - Cache permission check results for better performance (Phase 1.2)
• ✅ Lazy role evaluation - Load roles only when needed, reduce memory footprint
• ✅ Memory optimization - Optimize for large permission sets (1000+ permissions)

Tooling & Integration - ✅ 100% Complete

• ✅ CLI tool - fire-shield validate, fire-shield check, permission management (Phase 2.1)
• ✅ GraphQL adapter - First-class GraphQL directives and middleware (Phase 2.2)
• ✅ tRPC adapter - Type-safe RPC middleware for tRPC
• ✅ Benchmark suite - Continuous performance tracking and regression detection

New Framework Adapters - ✅ 100% Complete

• ✅ MCP Adapter - Model Context Protocol integration for AI agents (8 MCP tools)
• ✅ SvelteKit Adapter - Server-side hooks and page guards for SvelteKit
• ✅ React Native Adapter - Mobile-first RBAC for React Native apps
• ✅ Expo Adapter - Optimized for Expo managed workflow

Bonus Features - ✅ Not in Original Plan

• ✅ Deny Permissions Support - Added to ALL 9 adapters (React, React Native, Expo, Vue, GraphQL, tRPC, Express, Next.js, Nuxt)
  • ~35+ new functions/hooks/components/directives
  • Wildcard pattern support in denies
  • Consistent API across all platforms

Statistics

• 460+ passing tests (up from 241)
• 11 total adapters (CLI, GraphQL, tRPC, React Native, Expo, MCP, SvelteKit + existing 4)
• ~35+ new deny-related functions
• Benchmark suite with 4 test suites
• ~25KB bundle size, zero dependencies

🚧 In Progress

v2.3 - Developer Experience (Q1 2026)

Documentation & Learning

• 🚧 Interactive playground - Try Fire Shield directly in browser
• 🚧 Migration guides - From Casbin, CASL, AccessControl to Fire Shield
• 🚧 Real-world case studies - Production examples and patterns
• 🚧 Video tutorials - Getting started and advanced topics

📋 Planned

v2.3 - Advanced Features (Q2-Q3 2026)

Attribute-Based Access Control (ABAC)

• 📋 Context-based permissions
• 📋 Dynamic permission evaluation
• 📋 Custom permission validators
• 📋 Time-based permissions (temporal access)

Multi-Tenancy Enhancements

• 📋 Tenant isolation guarantees
• 📋 Cross-tenant permission sharing
• 📋 Tenant-specific role hierarchies
• 📋 Tenant analytics and reporting

Database Integrations

• 📋 Prisma integration
• 📋 Drizzle ORM integration
• 📋 TypeORM integration
• 📋 MongoDB native support

Security Features

• 📋 Permission change notifications
• 📋 Anomaly detection in access patterns
• 📋 Rate limiting for permission checks
• 📋 Security compliance reports (SOC2, GDPR, HIPAA)

v2.4 - Ecosystem Growth (Q4 2026)

Framework Adapters

• 📋 Remix adapter
• 📋 Astro adapter
• 📋 SolidJS adapter
• 📋 Qwik adapter
• 📋 NestJS decorator-based adapter
• 📋 tRPC middleware

Tooling

• 📋 Permission visualization tool
• 📋 Role conflict detector
• 📋 Permission dependency analyzer
• 📋 Import/export from CSV, JSON, YAML

💡 Future Ideas

Long-term Vision (2027+)

Advanced Permission Models

• 💡 Delegation chains (A delegates to B delegates to C)
• 💡 Conditional permissions (if-then rules)
• 💡 Permission templates and inheritance
• 💡 Geographic-based permissions
• 💡 Device-based access control

Enterprise Features

• 💡 Distributed RBAC across microservices
• 💡 Real-time permission sync
• 💡 RBAC-as-a-Service cloud offering
• 💡 Multi-region permission replication
• 💡 Advanced audit log querying and analytics

Developer Tools

• 💡 Web-based RBAC admin dashboard
• 💡 Browser DevTools extension
• 💡 Terraform/Pulumi providers
• 💡 OpenAPI/Swagger integration
• 💡 GraphQL schema generator

Standards & Compliance

• 💡 OAuth2/OIDC integration
• 💡 SAML support
• 💡 XACML compatibility
• 💡 ISO 27001 compliance toolkit

🎯 Community Priorities

Based on GitHub issues and community feedback, these features are most requested:

High Priority

1. Permission Caching - Reduce redundant permission calculations
2. GraphQL Adapter - First-class GraphQL support
3. Interactive Playground - Try Fire Shield directly in browser
4. Migration Guides - Easy migration from Casbin, CASL, etc.

Medium Priority

1. Temporal Permissions - Time-based access control
2. Audit Log Analytics - Built-in reporting and dashboards
3. NestJS Decorators - Native NestJS integration
4. Permission Visualization - Graphical role/permission viewer

Under Consideration

1. Dynamic Permissions - Runtime permission definition
2. Permission Marketplace - Share common permission schemas
3. Federated RBAC - Cross-organization permissions
4. Blockchain Audit Trail - Immutable audit logs

📊 Release Cycle

Major Versions (x.0.0)

• Released yearly
• May include breaking changes
• Extensive migration guides provided

Minor Versions (2.x.0)

• Released quarterly
• New features, backward compatible
• Performance improvements

Patch Versions (2.1.x)

• Released as needed
• Bug fixes and security updates
• No breaking changes

🤝 How to Contribute

We welcome contributions to help achieve this roadmap!

Ways to Contribute

Code Contributions

• Pick an issue from our GitHub Issues
• Submit pull requests for roadmap features
• Write tests and improve coverage

Documentation

• Improve existing documentation
• Write tutorials and guides
• Translate documentation to other languages

Community

• Answer questions in discussions
• Share your Fire Shield use cases
• Write blog posts about Fire Shield

Feedback

• Report bugs and issues
• Suggest new features
• Vote on existing feature requests

Feature Requests

Have an idea not on this roadmap? We'd love to hear it!

1. Check existing issues
2. Create a new feature request
3. Describe your use case
4. Explain why it would benefit the community

📢 Stay Updated

• GitHub: Star and watch khapu2906/fire-shield
• NPM: Follow @fire-shield/core
• Changelog: Check releases

☕ Support the Project

If you find Fire Shield helpful and want to support its development:

🥖Buy me a banh mi

Your support helps maintain and improve Fire Shield! 🙏

---

Last updated: November 2025

This roadmap is subject to change based on community needs and feedback.