Update README.md

Author: collapsinghierarchy

README.md

@@ -1,10 +1,11 @@
 # noisytransfer-cli
+> This CLI serves as an experimental playground for PQ-secure, end-to-end encrypted file transfer. In the short to medium term, this CLI will be optimized, and the insights will feed into a yet-to-be-built application for browsers and mobile devices. When those applications are released, this CLI will be ported to a language better suited to CLI apps (e.g., Rust or Go).
 
-Fast end-to-end encrypted (E2EE) file transfer over WebRTC with short, human-readable pairing codes. The CLI speaks DTLS by default and can opt-in to a post-quantum (PQ) handshake with SAS confirmation.
+Fast end-to-end encrypted (E2EE) file transfer over WebRTC with short, human-readable pairing codes. The CLI speaks DTLS by default and can opt-in to a post-quantum (PQ) handshake with SAS confirmation. Additional documentation can be found [here](https://whitenoise.systems/tools/docs/cli/).
 
 ## Installation
 
-Requires Node.js **22 or newer** for development builds.
+Requires Node.js **22 or newer**.
 
 ### npm
 
@@ -69,8 +70,8 @@ Pass `--pq`:
 ```bash
 # sender prints "Code: 5527e74d-pq"
 nt send ./big.iso --pq
-> Code: 4932
-# receiver can use the suffix, or just --pq explicitly
+> Code: 1234-pq
+# receiver can use the code.
 nt recv 1234-pq ./downloads 
 ```
 
@@ -80,7 +81,7 @@ nt recv 1234-pq ./downloads
 - Multi-path sends are **tarred**; receiver writes `bundle.tar`. If a file exists and `--overwrite` is not set, the receiver dedupes as `bundle-1.tar`, `bundle-2.tar`, …
 - `--overwrite`: replace existing file instead of deduping.
 - `-y, --yes`: auto-accept SAS (useful for non-interactive invocations). Does **not** imply `--overwrite`.
-- `-v` (repeatable): increase verbosity; includes `[NT_DEBUG]` traces.
+- `-v`: increase verbosity; includes `[NT_DEBUG]` traces.
 - Filenames are sanitized on the receiver (no path traversal / reserved names). Output directory is always the **receiver’s** choice.
 
 ## Build from source
@@ -107,6 +108,12 @@ npm pack
 - Rendezvous codes are short-lived; both sides display a 6-digit SAS you can compare out-of-band.
 - The receiver owns the destination directory; announced filenames are sanitized to safe **leaf** names.
 
+## Current Limitations
+- The encoding of frames is currently extremely inefficient, which reduce the theoretical optimal throughput by roughly 4x in default DTLS and 5x in the PQ-case. 
+- `XWING` is a good alternative to the deprecated `HybridkemX25519Kyber768` standard that is currently used here. But there are caveats that are discussed [here](https://github.com/dajiaji/hpke-js/issues/545). Currently i'm reviewing the [starfighter](https://eprint.iacr.org/2025/1397.pdf) publication, which might shift my opinion towards starfighter.
+- Binary distributables are planned. Linux distributables work and have been tested with pkg and SEA on Ubuntu 22 and newer. However, .exe distributables on Windows are more complex and currently out of scope; see [issue #39](https://github.com/WonderInventions/node-webrtc/issues/39) in the node-webrtc fork. Nothing has been tested on macOS yet.
+
+
 ## Future features
 Status: currently disabled/broken; will be re-enabled with proper tests.