{
  "ok": true,
  "generated_at": "2026-05-16T16:44:32.736Z",
  "vision": {
    "id": "privacy-defense-operator-capability-layer",
    "title": "Privacy Defense Operator Capability Layer",
    "source_context": "Derived from the current Cloak Harbor privacy-defense brief and the PlatPhormNews global platform contract.",
    "site_purpose": "platphorm-catalog remains a public, read-only capability catalog. This selection maps existing repository capabilities to an operator workflow; it does not execute Browser, PlatPhorm Content, or PlatPhorm Docs actions from the public site."
  },
  "source_catalog": {
    "generated_at": "2026-05-16T16:44:32.736Z",
    "repositories": 207,
    "global_capabilities": 49
  },
  "auth_boundary": {
    "protected_actions_require": "PLATPHORM_API_KEY",
    "accepted_headers": [
      "Authorization: Bearer $PLATPHORM_API_KEY",
      "X-PlatPhorm-API-Key: $PLATPHORM_API_KEY"
    ],
    "public_read_only": true,
    "rejected_platform_key_policy": "Site-specific platform API key names are not accepted. Use only the shared PlatPhorm API key."
  },
  "selected_tools": [
    {
      "id": "browser-evidence-capture",
      "plugin": "Browser",
      "title": "Browser Evidence Capture",
      "selected": true,
      "runtime_state": "available_to_codex_operator",
      "platform_fit": "Captures UI route evidence, screenshots, journey checks, accessibility checks, and public read-only product verification.",
      "privacy_boundary": "Screenshots and browser artifacts must be public-safe and redacted before publication; protected journey triggers require PLATPHORM_API_KEY.",
      "capability_ids": [
        "testing.automated-tests",
        "routing.application-pages",
        "accessibility.ui-a11y",
        "dashboard.operational-dashboard",
        "observability.trace-logging"
      ],
      "capabilities": [
        {
          "id": "testing.automated-tests",
          "name": "Automated Test Suite",
          "type": "testing",
          "implementations": 118,
          "reuse_score": 54,
          "recommended_source": {
            "repo_id": "github-recent__mbarbine__platphorm-content-showback-dashboard",
            "score": 76,
            "reason": "internal maturity, test evidence present, documentation/context present",
            "source_paths": [
              "__tests__/api-docs.test.ts",
              "__tests__/api-errors.test.ts",
              "__tests__/api-notifications.test.ts",
              "__tests__/api-register-mcp.test.ts",
              "__tests__/api-session-migrate.test.ts",
              "__tests__/api-session.test.ts",
              "__tests__/api-signup.test.ts",
              "__tests__/api-track-event.test.ts",
              "__tests__/api-url.test.ts",
              "__tests__/api-user.test.ts",
              "__tests__/api-v1.test.ts",
              "__tests__/api-waitlist.test.ts",
              "__tests__/api-webhooks.test.ts",
              "__tests__/api/health.test.ts",
              "__tests__/error-tracker.test.ts",
              "__tests__/faq/page.test.tsx",
              "__tests__/mcp.test.ts",
              "__tests__/middleware.test.ts",
              "__tests__/mock-data.test.ts",
              "__tests__/notification-service.test.ts",
              "__tests__/performance-monitor.test.ts",
              "__tests__/session-manager.test.ts",
              "__tests__/utils.test.ts",
              "__tests__/well-known.test.ts",
              "components/automated-test-results.tsx"
            ]
          }
        },
        {
          "id": "routing.application-pages",
          "name": "Application Routes",
          "type": "routing",
          "implementations": 124,
          "reuse_score": 51,
          "recommended_source": {
            "repo_id": "github-recent__mbarbine__ph3ar-webby",
            "score": 76,
            "reason": "internal maturity, test evidence present, documentation/context present",
            "source_paths": [
              "src/routes/about/+page.js",
              "src/routes/about/+page.svelte",
              "src/routes/api-docs/+page.svelte",
              "src/routes/careers/+page.svelte",
              "src/routes/contact/+page.svelte",
              "src/routes/faq/+page.svelte",
              "src/routes/jobs/+page.svelte",
              "src/routes/privacy/+page.svelte",
              "src/routes/roadmap/+page.svelte",
              "src/routes/watch-this/+page.svelte"
            ]
          }
        },
        {
          "id": "accessibility.ui-a11y",
          "name": "Accessibility UI Support",
          "type": "accessibility",
          "implementations": 12,
          "reuse_score": 50,
          "recommended_source": {
            "repo_id": "github-recent__mbarbine__platphorm-content-showback-dashboard",
            "score": 69,
            "reason": "internal maturity, test evidence present, documentation/context present",
            "source_paths": [
              "components/keyboard-shortcuts.tsx"
            ]
          }
        },
        {
          "id": "dashboard.operational-dashboard",
          "name": "Operational Dashboard",
          "type": "dashboard",
          "implementations": 85,
          "reuse_score": 40,
          "recommended_source": {
            "repo_id": "github-recent__mbarbine__platphorm-auction-vice",
            "score": 69,
            "reason": "internal maturity, test evidence present, documentation/context present",
            "source_paths": [
              "app/dashboard/listings/page.tsx",
              "app/dashboard/page.tsx"
            ]
          }
        },
        {
          "id": "observability.trace-logging",
          "name": "Trace and Logging",
          "type": "observability",
          "implementations": 158,
          "reuse_score": 42,
          "recommended_source": {
            "repo_id": "github-recent__mbarbine__ph3ar-webby",
            "score": 70,
            "reason": "internal maturity, test evidence present, documentation/context present",
            "source_paths": [
              "src/routes/api/health/+server.ts"
            ]
          }
        }
      ]
    },
    {
      "id": "platphorm-content-evidence-vault",
      "plugin": "PlatPhorm Content",
      "title": "PlatPhorm Content Evidence Vault",
      "platform_url": "https://content.platphormnews.com",
      "selected": true,
      "runtime_state": "available_to_codex_operator",
      "platform_fit": "Publishes operator-approved reports, screenshots, exports, and evidence packets through the PlatPhorm Content surface instead of scattering artifacts across local repos.",
      "privacy_boundary": "The public catalog only declares the platform fit. Content writes, sharing changes, moves, imports, and exports are protected operator actions.",
      "capability_ids": [
        "data.import-export",
        "document.processing",
        "content.publishing-workflow",
        "analytics.metrics-reporting",
        "security.env-configuration"
      ],
      "capabilities": [
        {
          "id": "data.import-export",
          "name": "Data Import and Export",
          "type": "data-export",
          "implementations": 180,
          "reuse_score": 41,
          "recommended_source": {
            "repo_id": "github-recent__mbarbine__ph3ar-webby",
            "score": 74,
            "reason": "internal maturity, test evidence present, documentation/context present",
            "source_paths": [
              "jsconfig.json",
              "package.json",
              "src/routes/feed.xml/+server.ts",
              "src/routes/rss.xml/+server.ts",
              "src/routes/sitemap.xml/+server.ts",
              "tsconfig.json"
            ]
          }
        },
        {
          "id": "document.processing",
          "name": "Document Processing",
          "type": "document-processing",
          "implementations": 25,
          "reuse_score": 38,
          "recommended_source": {
            "repo_id": "github-recent__mbarbine__platphorm-cobol",
            "score": 68,
            "reason": "internal maturity, test evidence present, documentation/context present",
            "source_paths": [
              "app/api/v1/document/route.ts"
            ]
          }
        },
        {
          "id": "content.publishing-workflow",
          "name": "Content Publishing Workflow",
          "type": "content-management",
          "implementations": 167,
          "reuse_score": 40,
          "recommended_source": {
            "repo_id": "github-recent__mbarbine__ph3ar-webby",
            "score": 74,
            "reason": "internal maturity, test evidence present, documentation/context present",
            "source_paths": [
              "package.json",
              "postcss.config.cjs",
              "src/routes/api-docs/+page.svelte"
            ]
          }
        },
        {
          "id": "analytics.metrics-reporting",
          "name": "Metrics and Reporting",
          "type": "analytics",
          "implementations": 134,
          "reuse_score": 40,
          "recommended_source": {
            "repo_id": "github-recent__mbarbine__ph3ar-webby",
            "score": 74,
            "reason": "internal maturity, test evidence present, documentation/context present",
            "source_paths": [
              "package.json",
              "src/routes/+layout.server.js"
            ]
          }
        },
        {
          "id": "security.env-configuration",
          "name": "Environment Configuration",
          "type": "security",
          "implementations": 146,
          "reuse_score": 35,
          "recommended_source": {
            "repo_id": "github-recent__mbarbine__ja4mlab",
            "score": 67,
            "reason": "internal maturity, test evidence present, documentation/context present",
            "source_paths": [
              "packages/shared-http/src/health.ts",
              "packages/shared-http/src/version.ts",
              "services/api-broker/server.mjs"
            ]
          }
        }
      ]
    },
    {
      "id": "platphorm-docs-briefing-pack",
      "plugin": "PlatPhorm Docs",
      "title": "PlatPhorm Docs Briefing Pack",
      "platform_url": "https://docs.platphormnews.com",
      "selected": true,
      "runtime_state": "available_to_codex_operator",
      "platform_fit": "Produces polished briefs, remediation reports, privacy-defense packets, and PlatPhorm Docs-ready deliverables from evidence-backed catalog data.",
      "privacy_boundary": "Generated documents must distinguish source evidence from recommendations and must not include secrets, raw IPs, cookies, or private client data.",
      "capability_ids": [
        "document.processing",
        "api.openapi-docs",
        "discovery.llms-files",
        "seo.discovery-surface",
        "content.publishing-workflow"
      ],
      "capabilities": [
        {
          "id": "document.processing",
          "name": "Document Processing",
          "type": "document-processing",
          "implementations": 25,
          "reuse_score": 38,
          "recommended_source": {
            "repo_id": "github-recent__mbarbine__platphorm-cobol",
            "score": 68,
            "reason": "internal maturity, test evidence present, documentation/context present",
            "source_paths": [
              "app/api/v1/document/route.ts"
            ]
          }
        },
        {
          "id": "api.openapi-docs",
          "name": "OpenAPI Documentation",
          "type": "api",
          "implementations": 13,
          "reuse_score": 60,
          "recommended_source": {
            "repo_id": "github-recent__mbarbine__platphorm-ascii",
            "score": 73,
            "reason": "internal maturity, test evidence present, documentation/context present",
            "source_paths": [
              "public/schemas/openapi.json"
            ]
          }
        },
        {
          "id": "discovery.llms-files",
          "name": "LLMs Discovery Files",
          "type": "discovery",
          "implementations": 32,
          "reuse_score": 60,
          "recommended_source": {
            "repo_id": "github-recent__mbarbine__ph3ar-webby",
            "score": 81,
            "reason": "internal maturity, test evidence present, documentation/context present",
            "source_paths": [
              "static/llms-full.txt",
              "static/llms.txt"
            ]
          }
        },
        {
          "id": "seo.discovery-surface",
          "name": "SEO and Discovery Surface",
          "type": "seo",
          "implementations": 32,
          "reuse_score": 57,
          "recommended_source": {
            "repo_id": "github-recent__mbarbine__ph3ar-webby",
            "score": 81,
            "reason": "internal maturity, test evidence present, documentation/context present",
            "source_paths": [
              "static/robots.txt"
            ]
          }
        },
        {
          "id": "content.publishing-workflow",
          "name": "Content Publishing Workflow",
          "type": "content-management",
          "implementations": 167,
          "reuse_score": 40,
          "recommended_source": {
            "repo_id": "github-recent__mbarbine__ph3ar-webby",
            "score": 74,
            "reason": "internal maturity, test evidence present, documentation/context present",
            "source_paths": [
              "package.json",
              "postcss.config.cjs",
              "src/routes/api-docs/+page.svelte"
            ]
          }
        }
      ]
    }
  ],
  "mission_tracks": [
    {
      "id": "sigreduce",
      "title": "Signature Reduction Engine",
      "vision_fit": "Builds an exposure graph, scores exploitability, and creates prioritized OPSEC reduction actions from real source evidence.",
      "phase_one_boundary": "Start with read-only footprint import, graph/risk summaries, and operator-reviewed remediation notes. Takedowns and client data ingestion stay protected.",
      "tool_ids": [
        "browser-evidence-capture",
        "platphorm-content-evidence-vault",
        "platphorm-docs-briefing-pack"
      ],
      "capability_ids": [
        "analytics.metrics-reporting",
        "search.query-interface",
        "security.env-configuration",
        "observability.trace-logging",
        "automation.workflow-runner",
        "data.import-export"
      ],
      "capabilities": [
        {
          "id": "analytics.metrics-reporting",
          "name": "Metrics and Reporting",
          "type": "analytics",
          "implementations": 134,
          "reuse_score": 40,
          "recommended_source": {
            "repo_id": "github-recent__mbarbine__ph3ar-webby",
            "score": 74,
            "reason": "internal maturity, test evidence present, documentation/context present",
            "source_paths": [
              "package.json",
              "src/routes/+layout.server.js"
            ]
          }
        },
        {
          "id": "search.query-interface",
          "name": "Search Query Interface",
          "type": "search",
          "implementations": 41,
          "reuse_score": 47,
          "recommended_source": {
            "repo_id": "github-recent__mbarbine__platphorm-auction-vice",
            "score": 74,
            "reason": "internal maturity, test evidence present, documentation/context present",
            "source_paths": [
              "app/search/page.tsx"
            ]
          }
        },
        {
          "id": "security.env-configuration",
          "name": "Environment Configuration",
          "type": "security",
          "implementations": 146,
          "reuse_score": 35,
          "recommended_source": {
            "repo_id": "github-recent__mbarbine__ja4mlab",
            "score": 67,
            "reason": "internal maturity, test evidence present, documentation/context present",
            "source_paths": [
              "packages/shared-http/src/health.ts",
              "packages/shared-http/src/version.ts",
              "services/api-broker/server.mjs"
            ]
          }
        },
        {
          "id": "observability.trace-logging",
          "name": "Trace and Logging",
          "type": "observability",
          "implementations": 158,
          "reuse_score": 42,
          "recommended_source": {
            "repo_id": "github-recent__mbarbine__ph3ar-webby",
            "score": 70,
            "reason": "internal maturity, test evidence present, documentation/context present",
            "source_paths": [
              "src/routes/api/health/+server.ts"
            ]
          }
        },
        {
          "id": "automation.workflow-runner",
          "name": "Workflow Runner",
          "type": "automation",
          "implementations": 77,
          "reuse_score": 46,
          "recommended_source": {
            "repo_id": "github-recent__mbarbine__platphorm-content-showback-dashboard",
            "score": 74,
            "reason": "internal maturity, test evidence present, documentation/context present",
            "source_paths": [
              "app/jobs/page.tsx",
              "app/workflows/page.tsx",
              "components/workflow-status.tsx",
              "components/workflows-content.tsx",
              "components/workflows-overview.tsx"
            ]
          }
        },
        {
          "id": "data.import-export",
          "name": "Data Import and Export",
          "type": "data-export",
          "implementations": 180,
          "reuse_score": 41,
          "recommended_source": {
            "repo_id": "github-recent__mbarbine__ph3ar-webby",
            "score": 74,
            "reason": "internal maturity, test evidence present, documentation/context present",
            "source_paths": [
              "jsconfig.json",
              "package.json",
              "src/routes/feed.xml/+server.ts",
              "src/routes/rss.xml/+server.ts",
              "src/routes/sitemap.xml/+server.ts",
              "tsconfig.json"
            ]
          }
        }
      ]
    },
    {
      "id": "osint-scrubber",
      "title": "OSINT Scrubber and Takedown Orchestrator",
      "vision_fit": "Turns public findings into risk-ranked tasks, evidence bundles, and tracked remediation workflows without pretending removal succeeded.",
      "phase_one_boundary": "Expose discovery and task generation as public-safe previews. Real takedown, replay, publish, or workflow-run actions require PLATPHORM_API_KEY and legal review.",
      "tool_ids": [
        "browser-evidence-capture",
        "platphorm-content-evidence-vault",
        "platphorm-docs-briefing-pack"
      ],
      "capability_ids": [
        "automation.workflow-runner",
        "forms.submission-flow",
        "webhooks.event-receiver",
        "mcp.tool-server",
        "document.processing",
        "testing.automated-tests"
      ],
      "capabilities": [
        {
          "id": "automation.workflow-runner",
          "name": "Workflow Runner",
          "type": "automation",
          "implementations": 77,
          "reuse_score": 46,
          "recommended_source": {
            "repo_id": "github-recent__mbarbine__platphorm-content-showback-dashboard",
            "score": 74,
            "reason": "internal maturity, test evidence present, documentation/context present",
            "source_paths": [
              "app/jobs/page.tsx",
              "app/workflows/page.tsx",
              "components/workflow-status.tsx",
              "components/workflows-content.tsx",
              "components/workflows-overview.tsx"
            ]
          }
        },
        {
          "id": "forms.submission-flow",
          "name": "Form Submission Flow",
          "type": "forms",
          "implementations": 150,
          "reuse_score": 38,
          "recommended_source": {
            "repo_id": "github-recent__mbarbine__ph3ar-webby",
            "score": 65,
            "reason": "internal maturity, test evidence present, documentation/context present",
            "source_paths": [
              "package.json",
              "src/routes/contact/+page.svelte"
            ]
          }
        },
        {
          "id": "webhooks.event-receiver",
          "name": "Webhook Event Receiver",
          "type": "webhooks",
          "implementations": 58,
          "reuse_score": 44,
          "recommended_source": {
            "repo_id": "github-recent__mbarbine__platphorm-jobs",
            "score": 68,
            "reason": "internal maturity, test evidence present, documentation/context present",
            "source_paths": [
              "__tests__/api/webhooks.test.ts",
              "app/api/events/route.ts",
              "app/api/v1/events/route.ts",
              "app/api/v1/webhooks/test/route.ts",
              "app/api/webhooks/route.ts"
            ]
          }
        },
        {
          "id": "mcp.tool-server",
          "name": "MCP Tool Server",
          "type": "mcp",
          "implementations": 80,
          "reuse_score": 55,
          "recommended_source": {
            "repo_id": "github-recent__mbarbine__platphorm-auction-vice",
            "score": 74,
            "reason": "internal maturity, test evidence present, documentation/context present",
            "source_paths": [
              "app/api/mcp/route.ts",
              "package.json"
            ]
          }
        },
        {
          "id": "document.processing",
          "name": "Document Processing",
          "type": "document-processing",
          "implementations": 25,
          "reuse_score": 38,
          "recommended_source": {
            "repo_id": "github-recent__mbarbine__platphorm-cobol",
            "score": 68,
            "reason": "internal maturity, test evidence present, documentation/context present",
            "source_paths": [
              "app/api/v1/document/route.ts"
            ]
          }
        },
        {
          "id": "testing.automated-tests",
          "name": "Automated Test Suite",
          "type": "testing",
          "implementations": 118,
          "reuse_score": 54,
          "recommended_source": {
            "repo_id": "github-recent__mbarbine__platphorm-content-showback-dashboard",
            "score": 76,
            "reason": "internal maturity, test evidence present, documentation/context present",
            "source_paths": [
              "__tests__/api-docs.test.ts",
              "__tests__/api-errors.test.ts",
              "__tests__/api-notifications.test.ts",
              "__tests__/api-register-mcp.test.ts",
              "__tests__/api-session-migrate.test.ts",
              "__tests__/api-session.test.ts",
              "__tests__/api-signup.test.ts",
              "__tests__/api-track-event.test.ts",
              "__tests__/api-url.test.ts",
              "__tests__/api-user.test.ts",
              "__tests__/api-v1.test.ts",
              "__tests__/api-waitlist.test.ts",
              "__tests__/api-webhooks.test.ts",
              "__tests__/api/health.test.ts",
              "__tests__/error-tracker.test.ts",
              "__tests__/faq/page.test.tsx",
              "__tests__/mcp.test.ts",
              "__tests__/middleware.test.ts",
              "__tests__/mock-data.test.ts",
              "__tests__/notification-service.test.ts",
              "__tests__/performance-monitor.test.ts",
              "__tests__/session-manager.test.ts",
              "__tests__/utils.test.ts",
              "__tests__/well-known.test.ts",
              "components/automated-test-results.tsx"
            ]
          }
        }
      ]
    },
    {
      "id": "stealthscore-coach",
      "title": "StealthScore Coach",
      "vision_fit": "Converts exposure signals into operator-readable guidance, compliance status, and next actions tied to evidence.",
      "phase_one_boundary": "Keep scoring explainable and evidence-backed. Avoid behavioral surveillance claims until client-side consent, storage, and retention controls exist.",
      "tool_ids": [
        "browser-evidence-capture",
        "platphorm-docs-briefing-pack"
      ],
      "capability_ids": [
        "ai.chat-or-generation",
        "dashboard.operational-dashboard",
        "authorization.access-control",
        "accessibility.ui-a11y",
        "testing.automated-tests"
      ],
      "capabilities": [
        {
          "id": "ai.chat-or-generation",
          "name": "AI Chat or Generation",
          "type": "ai-model",
          "implementations": 72,
          "reuse_score": 44,
          "recommended_source": {
            "repo_id": "github-recent__mbarbine__platphorm-auction-vice",
            "score": 70,
            "reason": "internal maturity, test evidence present, documentation/context present",
            "source_paths": [
              "app/docs/ai-roadmap/page.tsx"
            ]
          }
        },
        {
          "id": "dashboard.operational-dashboard",
          "name": "Operational Dashboard",
          "type": "dashboard",
          "implementations": 85,
          "reuse_score": 40,
          "recommended_source": {
            "repo_id": "github-recent__mbarbine__platphorm-auction-vice",
            "score": 69,
            "reason": "internal maturity, test evidence present, documentation/context present",
            "source_paths": [
              "app/dashboard/listings/page.tsx",
              "app/dashboard/page.tsx"
            ]
          }
        },
        {
          "id": "authorization.access-control",
          "name": "Access Control",
          "type": "authorization",
          "implementations": 33,
          "reuse_score": 33,
          "recommended_source": {
            "repo_id": "github-recent__mbarbine__game-porting-service-webby",
            "score": 56,
            "reason": "internal maturity, test evidence present, documentation/context present",
            "source_paths": [
              "app/admin/messages/page.tsx",
              "app/admin/page.tsx",
              "app/admin/projects/[id]/page.tsx",
              "app/admin/projects/page.tsx",
              "app/admin/quotes/page.tsx",
              "app/admin/settings/page.tsx"
            ]
          }
        },
        {
          "id": "accessibility.ui-a11y",
          "name": "Accessibility UI Support",
          "type": "accessibility",
          "implementations": 12,
          "reuse_score": 50,
          "recommended_source": {
            "repo_id": "github-recent__mbarbine__platphorm-content-showback-dashboard",
            "score": 69,
            "reason": "internal maturity, test evidence present, documentation/context present",
            "source_paths": [
              "components/keyboard-shortcuts.tsx"
            ]
          }
        },
        {
          "id": "testing.automated-tests",
          "name": "Automated Test Suite",
          "type": "testing",
          "implementations": 118,
          "reuse_score": 54,
          "recommended_source": {
            "repo_id": "github-recent__mbarbine__platphorm-content-showback-dashboard",
            "score": 76,
            "reason": "internal maturity, test evidence present, documentation/context present",
            "source_paths": [
              "__tests__/api-docs.test.ts",
              "__tests__/api-errors.test.ts",
              "__tests__/api-notifications.test.ts",
              "__tests__/api-register-mcp.test.ts",
              "__tests__/api-session-migrate.test.ts",
              "__tests__/api-session.test.ts",
              "__tests__/api-signup.test.ts",
              "__tests__/api-track-event.test.ts",
              "__tests__/api-url.test.ts",
              "__tests__/api-user.test.ts",
              "__tests__/api-v1.test.ts",
              "__tests__/api-waitlist.test.ts",
              "__tests__/api-webhooks.test.ts",
              "__tests__/api/health.test.ts",
              "__tests__/error-tracker.test.ts",
              "__tests__/faq/page.test.tsx",
              "__tests__/mcp.test.ts",
              "__tests__/middleware.test.ts",
              "__tests__/mock-data.test.ts",
              "__tests__/notification-service.test.ts",
              "__tests__/performance-monitor.test.ts",
              "__tests__/session-manager.test.ts",
              "__tests__/utils.test.ts",
              "__tests__/well-known.test.ts",
              "components/automated-test-results.tsx"
            ]
          }
        }
      ]
    },
    {
      "id": "platform-contract-evidence",
      "title": "Platform Contract Evidence Loop",
      "vision_fit": "Uses the PlatPhorm standard routes, discovery files, and best-implementation rankings to prove each site remains human-usable and machine-readable.",
      "phase_one_boundary": "Public reads can show status and gaps. Regeneration, scans, content writes, docs publication, and remediation are protected actions.",
      "tool_ids": [
        "browser-evidence-capture",
        "platphorm-content-evidence-vault",
        "platphorm-docs-briefing-pack"
      ],
      "capability_ids": [
        "api.openapi-docs",
        "discovery.llms-files",
        "seo.discovery-surface",
        "integration.platphorm",
        "mcp.tool-server",
        "observability.trace-logging"
      ],
      "capabilities": [
        {
          "id": "api.openapi-docs",
          "name": "OpenAPI Documentation",
          "type": "api",
          "implementations": 13,
          "reuse_score": 60,
          "recommended_source": {
            "repo_id": "github-recent__mbarbine__platphorm-ascii",
            "score": 73,
            "reason": "internal maturity, test evidence present, documentation/context present",
            "source_paths": [
              "public/schemas/openapi.json"
            ]
          }
        },
        {
          "id": "discovery.llms-files",
          "name": "LLMs Discovery Files",
          "type": "discovery",
          "implementations": 32,
          "reuse_score": 60,
          "recommended_source": {
            "repo_id": "github-recent__mbarbine__ph3ar-webby",
            "score": 81,
            "reason": "internal maturity, test evidence present, documentation/context present",
            "source_paths": [
              "static/llms-full.txt",
              "static/llms.txt"
            ]
          }
        },
        {
          "id": "seo.discovery-surface",
          "name": "SEO and Discovery Surface",
          "type": "seo",
          "implementations": 32,
          "reuse_score": 57,
          "recommended_source": {
            "repo_id": "github-recent__mbarbine__ph3ar-webby",
            "score": 81,
            "reason": "internal maturity, test evidence present, documentation/context present",
            "source_paths": [
              "static/robots.txt"
            ]
          }
        },
        {
          "id": "integration.platphorm",
          "name": "PlatPhorm Integration",
          "type": "integration",
          "implementations": 49,
          "reuse_score": 44,
          "recommended_source": {
            "repo_id": "github-recent__mbarbine__platphorm-jobs",
            "score": 68,
            "reason": "internal maturity, test evidence present, documentation/context present",
            "source_paths": [
              "__tests__/api/events.test.ts",
              "__tests__/api/grok-parse-jd.test.ts",
              "__tests__/api/interviews.test.ts",
              "__tests__/api/network-calendar.test.ts",
              "__tests__/api/team.test.ts",
              "__tests__/api/webhooks.test.ts",
              "__tests__/lib/events.test.ts",
              "app/.well-known/agents.json/route.ts",
              "package.json"
            ]
          }
        },
        {
          "id": "mcp.tool-server",
          "name": "MCP Tool Server",
          "type": "mcp",
          "implementations": 80,
          "reuse_score": 55,
          "recommended_source": {
            "repo_id": "github-recent__mbarbine__platphorm-auction-vice",
            "score": 74,
            "reason": "internal maturity, test evidence present, documentation/context present",
            "source_paths": [
              "app/api/mcp/route.ts",
              "package.json"
            ]
          }
        },
        {
          "id": "observability.trace-logging",
          "name": "Trace and Logging",
          "type": "observability",
          "implementations": 158,
          "reuse_score": 42,
          "recommended_source": {
            "repo_id": "github-recent__mbarbine__ph3ar-webby",
            "score": 70,
            "reason": "internal maturity, test evidence present, documentation/context present",
            "source_paths": [
              "src/routes/api/health/+server.ts"
            ]
          }
        }
      ]
    }
  ],
  "protection_mode": {
    "mode": "functionality_first",
    "enforcement_enabled": false,
    "note": "Protection controls are scaffolded for visibility only. The public catalog does not block routes, require credentials, mutate data, run scans, or enforce workflow gates while functionality is being proven."
  },
  "protection_controls": [
    {
      "id": "artifact-redaction-review",
      "title": "Artifact Redaction Review",
      "status": "scaffolded_not_enforced",
      "enforcement": "off",
      "scope": "screenshots, docs-bound briefs, content-bound evidence packets, and exported reports",
      "current_behavior": "The selector labels redaction as required before publication but does not inspect or block artifacts.",
      "activation_requirements": [
        "redaction checker",
        "artifact type registry",
        "operator override record",
        "test fixtures for clean and rejected artifacts"
      ]
    },
    {
      "id": "operator-approval-gate",
      "title": "Operator Approval Gate",
      "status": "scaffolded_not_enforced",
      "enforcement": "off",
      "scope": "content writes, docs publication, browser journey triggers, scans, and remediation requests",
      "current_behavior": "Protected actions are described as requiring an operator path, but the public catalog exposes read-only selector output only.",
      "activation_requirements": [
        "protected action endpoint",
        "operator confirmation UI",
        "shared key validation",
        "approval audit event"
      ]
    },
    {
      "id": "audit-retention-log",
      "title": "Audit and Retention Log",
      "status": "scaffolded_not_enforced",
      "enforcement": "off",
      "scope": "future connector writes, generated briefs, evidence bundles, and report exports",
      "current_behavior": "The selector names audit and retention expectations without persisting events or applying retention windows.",
      "activation_requirements": [
        "audit event schema",
        "retention policy config",
        "redacted metadata capture",
        "public/protected visibility tests"
      ]
    },
    {
      "id": "trusted-source-review",
      "title": "Trusted Source Review",
      "status": "scaffolded_not_enforced",
      "enforcement": "off",
      "scope": "future crawl, import, browser navigation, webhook, and evidence intake targets",
      "current_behavior": "The selector references trusted-source discipline but does not crawl, proxy, navigate, or reject user-provided URLs.",
      "activation_requirements": [
        "trusted-domain resolver",
        "SSRF guard",
        "URL count and depth limits",
        "blocked-host tests"
      ]
    },
    {
      "id": "legal-claims-review",
      "title": "Legal and Claims Review",
      "status": "scaffolded_not_enforced",
      "enforcement": "off",
      "scope": "takedown language, privacy notices, executive reports, and public product claims",
      "current_behavior": "Risky capabilities are deferred or research-only; the selector does not generate legal requests or claim takedown success.",
      "activation_requirements": [
        "review workflow",
        "approved template registry",
        "claim taxonomy",
        "manual signoff record"
      ]
    }
  ],
  "deferred_capabilities": [
    {
      "id": "decoy-persona-traffic-shaping",
      "title": "Decoy Persona and Traffic Shaping",
      "status": "deferred",
      "reason": "This can create legal, ethical, account-policy, and attribution risk. It needs explicit governance, consent, labeling, and abuse-prevention controls before implementation.",
      "required_controls": [
        "written legal policy",
        "operator approval gates",
        "abuse-prevention review",
        "audit logging",
        "public claims review"
      ]
    },
    {
      "id": "privacy-preserving-kyc-broker",
      "title": "Privacy-Preserving KYC Broker",
      "status": "research_only",
      "reason": "The catalog shows reusable auth, forms, and document capabilities, but a real broker needs credential issuer integrations, cryptographic proof design, and jurisdictional review.",
      "required_controls": [
        "credential issuer inventory",
        "cryptography review",
        "jurisdictional policy",
        "protected data model",
        "redaction and retention tests"
      ]
    }
  ],
  "missing_capability_ids": [],
  "claims_boundary": [
    "Selection is evidence-backed by existing catalog capability families and recommended source paths.",
    "Connector availability is an operator-session capability, not proof that the public catalog executed a connector action.",
    "Public catalog outputs are read-only. Content writes, docs publication, browser journey triggers, scans, remediations, and workflow runs require protected operator action.",
    "No fake takedown success, screenshot success, content publication success, docs publication, or remediation completion is claimed."
  ]
}
