diff --git a/.gitignore b/.gitignore
index c461843..835aaeb 100644
--- a/.gitignore
+++ b/.gitignore
@@ -7,8 +7,9 @@
##
## Get latest from https://github.com/github/gitignore/blob/main/Dotnet.gitignore
-# Rider
+# Rider / VS
.idea/
+*.DotSettings.user
# Build results
[Dd]ebug/
@@ -63,5 +64,12 @@ docs/resources/
# Probe data (generated by CI, pushed to latest-results branch)
docs/static/probe/data.js
+# Python
+__pycache__/
+
# Node
node_modules/
+package-lock.json
+
+# Probe results (local testing)
+probe-*.json
diff --git a/CHANGELOG.md b/CHANGELOG.md
new file mode 100644
index 0000000..f4cde59
--- /dev/null
+++ b/CHANGELOG.md
@@ -0,0 +1,94 @@
+# Changelog
+
+All notable changes to Http11Probe are documented in this file.
+
+## [Unreleased]
+
+### Added
+- **Server configuration pages** — per-server docs pages showing Dockerfile, source code, and config files for all 36 tested servers (`docs/content/servers/`)
+- **Clickable server names** — server names in the probe results table and summary bar chart now link to their configuration page
+
+## [2026-02-12]
+
+### Added
+- **Request/response detail tooltips** — hover over a result pill to see the raw response; click to open a modal with both the raw request and response (#27)
+- Repository cleanup — removed clutter files (probe-glyph.json, pycache, package-lock.json, DotSettings.user)
+
+### Fixed
+- BARE-LF tests (RFC 9112 §2.2) adjusted to warn on 2xx instead of fail, matching RFC SHOULD-level requirement (#21)
+
+### Removed
+- Proxy compliance tests removed from the suite (#20)
+
+## [2026-02-11]
+
+### Added
+- POST endpoint for Kestrel (ASP.NET Minimal) server (#13)
+- POST endpoint for Quarkus server (#14)
+- POST endpoint for Spring Boot server (#16)
+- POST endpoint for Express server (#17)
+
+### Fixed
+- H2O server now allows POST commands (#19)
+- Flask server routing and default port (#11)
+- SimpleW server POST handling and version update (#5)
+
+## [2026-02-09]
+
+### Added
+- SimpleW server contributed by stratdev3 (#2)
+
+### Fixed
+- Glyph server — reset request state on each new connection (#3)
+- In-development frameworks now filtered from results (#4)
+- SimpleW removed from blacklisted servers
+
+## [2026-02-08]
+
+### Added
+- **30 new tests** — body/content handling, chunked TE attack vectors, and additional compliance/smuggling tests (46 → 80 → 110+)
+- **7 new servers** — Actix, Ntex, Bun, H2O, NetCoreServer, Sisk, Watson
+- **6 more servers** — GenHTTP, SimpleW, EmbedIO, Puma, PHP, Deno, and others (total: 36)
+- **Deep analysis docs** — verified RFC evidence and ABNF grammar added to all glossary pages
+- **Exact HTTP request code blocks** in all glossary pages
+- **Category filter** — filter probe results by Compliance, Smuggling, or Malformed Input
+- **Language filter** — filter servers by programming language
+- **Sub-tables** — result tables split into logical groups within each category
+- **Unscored tests** — separate bucket for RFC-compliant reference tests, shown with reduced opacity and asterisk
+- **CLI improvements** — `--test` filter, `--help`, docs links in output, selected test display
+- **Summary bar chart** — ranked bars replacing summary badges, with pass/warn/fail/unscored segments
+- **Scrollbar styling** — themed scrollbars for probe result tables
+- **Custom favicon** — shield icon for browser tab
+- **Docs logo** — minimal shield outline
+
+### Fixed
+- Summary fail count derivation so pass + warn + fail = total
+- Unscored double-counting in summary statistics
+- Sort order: rank by scored pass + scored warn only
+- Puma Dockerfile: install build-essential for nio4r native extension
+- Deno Dockerfile: use `latest` tag instead of nonexistent `:2`
+- FRAGMENT-IN-TARGET re-scored as strict (implicit grammar prohibition)
+- Nancy and Nginx failing to start in CI
+- All servers bound to `0.0.0.0` for Docker reachability
+
+### Removed
+- Redundant SMUG-HEADER-INJECTION test (covered by other smuggling tests)
+- Nancy server removed from probe (no probe.json)
+
+## [2026-02-07]
+
+### Added
+- **Initial release** — extracted from Glyph11 into standalone Http11Probe repository
+- 12 standalone test servers dockerized with Docker Compose
+- Sequential probe workflow — one server at a time on port 8080
+- CI probe workflow (`.github/workflows/probe.yml`) with STRICT expectations dictionary
+- Hugo + Hextra documentation site with glossary, per-test docs, and probe results pages
+- Separate pages for Compliance, Smuggling, Malformed Input categories
+- Landing page with platform framing and contributor onboarding
+- "Add a Framework" documentation page
+
+### Fixed
+- Docker image tags lowercased as required
+- Git worktree/orphan branch creation for latest-results
+- GlyphServer: replaced manual buffer with PipeReader, fixed closing without response on oversized requests
+- Pingora build: added cmake and g++ to build stage
diff --git a/Http11Probe.sln.DotSettings.user b/Http11Probe.sln.DotSettings.user
deleted file mode 100644
index 47b712b..0000000
--- a/Http11Probe.sln.DotSettings.user
+++ /dev/null
@@ -1,3 +0,0 @@
-
- ForceIncluded
-
\ No newline at end of file
diff --git a/docs/content/compliance/_index.md b/docs/content/compliance/_index.md
index e644df9..d6a6639 100644
--- a/docs/content/compliance/_index.md
+++ b/docs/content/compliance/_index.md
@@ -10,6 +10,10 @@ These tests validate that HTTP/1.1 servers correctly implement the protocol requ
Each test sends a request that violates a specific **MUST** or **MUST NOT** requirement from the RFCs. A compliant server should reject these with a `400 Bad Request` (or close the connection). Accepting the request silently means the server is non-compliant and potentially vulnerable to downstream attacks.
+{{< callout type="info" >}}
+Click a **server name** to view its Dockerfile and source code. Click a **result cell** to see the full HTTP request and response.
+{{< /callout >}}
+
diff --git a/docs/content/malformed-input/_index.md b/docs/content/malformed-input/_index.md
index 5f6d2a7..8e136e1 100644
--- a/docs/content/malformed-input/_index.md
+++ b/docs/content/malformed-input/_index.md
@@ -10,6 +10,10 @@ These tests send pathological, oversized, or completely invalid payloads to veri
A well-implemented server should respond with `400 Bad Request`, `414 URI Too Long`, or `431 Request Header Fields Too Large` depending on the violation, or simply close the connection.
+{{< callout type="info" >}}
+Click a **server name** to view its Dockerfile and source code. Click a **result cell** to see the full HTTP request and response.
+{{< /callout >}}
+
diff --git a/docs/content/probe-results/_index.md b/docs/content/probe-results/_index.md
index bda1fe2..c64e706 100644
--- a/docs/content/probe-results/_index.md
+++ b/docs/content/probe-results/_index.md
@@ -12,6 +12,10 @@ HTTP/1.1 compliance comparison across frameworks. Each test sends a specific mal
## Summary
+{{< callout type="info" >}}
+These results are from CI runs (`ubuntu-latest`). Click a **server name** to view its Dockerfile and source code. Click on the **Compliance**, **Smuggling**, or **Malformed Input** tabs above for detailed results per category, where you can click any **result cell** to see the full HTTP request and response.
+{{< /callout >}}
+
@@ -24,10 +28,6 @@ HTTP/1.1 compliance comparison across frameworks. Each test sends a specific mal
**Unscored** — tests marked with `*` in the detail tables. These cover RFC language that uses "MAY" or permits multiple valid behaviors, so there is no single correct answer to score against. They are still run and displayed for visibility, but do not count toward the pass/fail score.
-{{< callout type="info" >}}
-These results are from CI runs (`ubuntu-latest`). Click on the **Compliance**, **Smuggling**, or **Malformed Input** tabs above for detailed results per category.
-{{< /callout >}}
-