{"service":"scrimed-diligence-packet-share-guard","status":"diligence-packet-share-guard-active-human-gated","route":"/release-continuity#diligence-packet-share-guard","apiRoute":"/api/release-continuity/diligence-packet-share-guard","briefRoute":"/api/release-continuity/diligence-packet-share-guard/brief","generatedAt":"static-no-secret-diligence-share-guard","noPhiConfirmed":true,"tokenMaterialCaptured":false,"productionApproval":false,"publicDistributionAuthority":"not-authorized","externalShareAuthority":"protected-diligence-only-after-human-review","recipientAuthorizationAuthority":"recipient-specific-human-approval-required","customerSpecificAuthority":"not-authorized-without-customer-permission","securityCertification":"not-security-certified","clinicalCareAuthority":"not-authorized-live-care","phiAuthority":"not-authorized-production-phi","cardCount":7,"noGoCount":1,"reviewRequiredCount":5,"internalAllowCount":1,"guardHash":"diligence-share-75b52bf1","cards":[{"id":"internal-release-steward-review","recipientClass":"internal-release-steward","decision":"allow-internal-no-secret","allowedPayload":["artifact label","status","route","API route","brief route","deterministic evidence hash","review owner","safe next action","blocked claims","no-secret boundary"],"withheldPayload":["bearer tokens","JWTs","refresh tokens","Supabase keys","service-role keys","passwords","PHI","patient identifiers","raw logs","customer data","production connector payloads","unreviewed certification claims","customer-specific release artifacts","protected AAL2 proof claims without retained packet metadata","protected boundary-release evidence intake packet body"],"requiredReviewer":"release steward","requiredControl":"Internal review may inspect no-secret metadata, manifest rules, gate cards, and blocked claims.","blockedClaims":["packet share guard is public distribution approval","packet share guard is production approval","recipient is authorized without human review","customer-specific distribution approved","PHI processing authorized","live clinical care authorized","security or compliance certified","strict AAL2 proof retained","protected boundary-release packet is public-shareable","boundary release approved","production connector approved","customer go-live approved"],"nextAction":"Use the manifest hash and release gate state to prepare a draft packet for human review.","safetyBoundary":"SCRIMED Diligence Packet Manifest assembles no-secret buyer and investor diligence metadata only. It does not store PHI, bearer tokens, Supabase secrets, service-role keys, raw logs, customer data, production connector payloads, certification proof, release approval, public distribution approval, or live clinical authority."},{"id":"qualified-buyer-investor-review","recipientClass":"qualified-investor-or-buyer-under-review","decision":"review-required-protected-diligence","allowedPayload":["artifact label","status","route","API route","brief route","deterministic evidence hash","review owner","safe next action","blocked claims","no-secret boundary"],"withheldPayload":["bearer tokens","JWTs","refresh tokens","Supabase keys","service-role keys","passwords","PHI","patient identifiers","raw logs","customer data","production connector payloads","unreviewed certification claims","customer-specific release artifacts","protected AAL2 proof claims without retained packet metadata","protected boundary-release evidence intake packet body"],"requiredReviewer":"release steward + claim guard reviewer","requiredControl":"Recipient scope, purpose, no-secret payload, and blocked-claim language must be reviewed before any buyer or investor diligence packet is shared.","blockedClaims":["packet share guard is public distribution approval","packet share guard is production approval","recipient is authorized without human review","customer-specific distribution approved","PHI processing authorized","live clinical care authorized","security or compliance certified","strict AAL2 proof retained","protected boundary-release packet is public-shareable","boundary release approved","production connector approved","customer go-live approved"],"nextAction":"Share only reviewed metadata-safe packet sections through a protected diligence lane; do not send public links or unreviewed claims.","safetyBoundary":"SCRIMED Diligence Release Gate summarizes no-secret buyer diligence readiness while preserving NO-GO boundaries for protected AAL2 proof, public distribution, production release, PHI processing, certification, and live clinical care."},{"id":"protected-boundary-release-evidence-intake-packet-sharing","artifactId":"protected-boundary-release-evidence-intake-packet","protectedPacketRoute":"/api/pilot-workspaces/{workspaceSlug}/boundary-release-evidence-intake/packet","recipientClass":"qualified-investor-or-buyer-under-review","decision":"withhold-until-qualified-review","allowedPayload":["artifact label","protected packet route","proof-stack status","storage authority","release authority","blocked claims","safe next action"],"withheldPayload":["bearer tokens","JWTs","refresh tokens","Supabase keys","service-role keys","passwords","PHI","patient identifiers","raw logs","customer data","production connector payloads","unreviewed certification claims","customer-specific release artifacts","protected AAL2 proof claims without retained packet metadata","protected boundary-release evidence intake packet body"],"requiredReviewer":"approved AAL2 operator + release steward + qualified legal/privacy/security reviewer","requiredControl":"Only route metadata may appear in no-secret diligence materials until a human AAL2 packet run, retained audit metadata, release-steward review, and qualified external review are complete.","blockedClaims":["packet share guard is public distribution approval","packet share guard is production approval","recipient is authorized without human review","customer-specific distribution approved","PHI processing authorized","live clinical care authorized","security or compliance certified","strict AAL2 proof retained","protected boundary-release packet is public-shareable","boundary release approved","production connector approved","customer go-live approved"],"nextAction":"Reference the protected packet route as withheld evidence only; do not share packet bodies or claim boundary-release approval.","safetyBoundary":"Protected packet route is aal2-audited-boundary-release-evidence-intake-packets-no-phi; storage authority is external-artifact-reference-only-no-raw-evidence-storage; release authority is not-authorized-boundary-release."},{"id":"customer-specific-recipient","recipientClass":"customer-specific-recipient","decision":"withhold-until-customer-authorization","allowedPayload":["artifact label","status","route","API route","brief route","deterministic evidence hash","review owner","safe next action","blocked claims","no-secret boundary"],"withheldPayload":["bearer tokens","JWTs","refresh tokens","Supabase keys","service-role keys","passwords","PHI","patient identifiers","raw logs","customer data","production connector payloads","unreviewed certification claims","customer-specific release artifacts","protected AAL2 proof claims without retained packet metadata","protected boundary-release evidence intake packet body"],"requiredReviewer":"buyer authorization owner + legal/privacy reviewer","requiredControl":"Customer-specific distribution requires named recipient authorization, customer permission, access logging, and release decision evidence.","blockedClaims":["packet share guard is public distribution approval","packet share guard is production approval","recipient is authorized without human review","customer-specific distribution approved","PHI processing authorized","live clinical care authorized","security or compliance certified","strict AAL2 proof retained","protected boundary-release packet is public-shareable","boundary release approved","production connector approved","customer go-live approved"],"nextAction":"Route the request to protected buyer release control before referencing any customer-specific packet.","safetyBoundary":"Customer-specific packets require customer permission and do not authorize PHI, connector access, clinical production, or go-live."},{"id":"public-press-distribution","recipientClass":"public-or-press","decision":"no-go","allowedPayload":[],"withheldPayload":["bearer tokens","JWTs","refresh tokens","Supabase keys","service-role keys","passwords","PHI","patient identifiers","raw logs","customer data","production connector payloads","unreviewed certification claims","customer-specific release artifacts","protected AAL2 proof claims without retained packet metadata","protected boundary-release evidence intake packet body"],"requiredReviewer":"qualified legal/privacy/security/clinical/release reviewers","requiredControl":"Public or press distribution remains blocked until qualified review approves exact language and public release authority.","blockedClaims":["packet share guard is public distribution approval","packet share guard is production approval","recipient is authorized without human review","customer-specific distribution approved","PHI processing authorized","live clinical care authorized","security or compliance certified","strict AAL2 proof retained","protected boundary-release packet is public-shareable","boundary release approved","production connector approved","customer go-live approved"],"nextAction":"Do not publish diligence packets, retained proof claims, security claims, certification claims, or customer-specific material.","safetyBoundary":"Public distribution cannot be created by release evidence, internal review, model output, smoke tests, or packet metadata."},{"id":"clinical-production-reviewer","recipientClass":"clinical-production-reviewer","decision":"withhold-until-qualified-review","allowedPayload":["synthetic use notice","clinical robustness scenario counts","human review requirement"],"withheldPayload":["bearer tokens","JWTs","refresh tokens","Supabase keys","service-role keys","passwords","PHI","patient identifiers","raw logs","customer data","production connector payloads","unreviewed certification claims","customer-specific release artifacts","protected AAL2 proof claims without retained packet metadata","protected boundary-release evidence intake packet body"],"requiredReviewer":"clinical governance + regulatory reviewer","requiredControl":"Clinical claims require qualified clinical and regulatory review; synthetic readiness cannot be presented as clinical validation.","blockedClaims":["packet share guard is public distribution approval","packet share guard is production approval","recipient is authorized without human review","customer-specific distribution approved","PHI processing authorized","live clinical care authorized","security or compliance certified","strict AAL2 proof retained","protected boundary-release packet is public-shareable","boundary release approved","production connector approved","customer go-live approved"],"nextAction":"Share research/demo-only synthetic readiness language and preserve no diagnosis, treatment, prescribing, or live patient-care authority.","safetyBoundary":"Clinical production review is not diagnosis, treatment, prescribing, clinical validation, or live-care approval."},{"id":"security-certification-reviewer","recipientClass":"security-certification-reviewer","decision":"withhold-until-qualified-review","allowedPayload":["no-secret control list","boundary headers","fail-closed smoke status","open security-review blockers"],"withheldPayload":["bearer tokens","JWTs","refresh tokens","Supabase keys","service-role keys","passwords","PHI","patient identifiers","raw logs","customer data","production connector payloads","unreviewed certification claims","customer-specific release artifacts","protected AAL2 proof claims without retained packet metadata","protected boundary-release evidence intake packet body"],"requiredReviewer":"qualified security/privacy reviewer","requiredControl":"Security and compliance claims require qualified review; no SOC, HIPAA, HITRUST, FDA, ONC, or security certification may be claimed from internal evidence.","blockedClaims":["packet share guard is public distribution approval","packet share guard is production approval","recipient is authorized without human review","customer-specific distribution approved","PHI processing authorized","live clinical care authorized","security or compliance certified","strict AAL2 proof retained","protected boundary-release packet is public-shareable","boundary release approved","production connector approved","customer go-live approved"],"nextAction":"Share current control posture and blocked claims only; withhold certification, audit, and attestation language.","safetyBoundary":"SCRIMED Release Evidence Promotion Queue converts no-secret release ledger entries into buyer-diligence candidates, protected operator proof blockers, and qualified-review requirements. It does not store PHI, tokens, raw logs, customer data, production connector payloads, certification evidence, public release approval, or live clinical authority."}],"requiredControls":["Release steward selects the recipient class before any packet is referenced externally.","Claim Guard reviews all buyer, investor, public, clinical, security, PHI, certification, and customer-go-live language.","Recipient-specific customer authorization is required before any customer-named packet or buyer-specific artifact leaves SCRIMED.","Protected AAL2 proof may be referenced only after retained no-secret protected packet metadata exists.","Protected Boundary Release Evidence Intake Packet references require a fresh human AAL2 session, retained audit metadata, release-steward review, and qualified external review before any boundary-release language is considered.","Public or press distribution remains blocked until qualified legal, privacy, security, clinical, and release review approve the exact language."],"allowedClaims":["SCRIMED can internally prepare no-secret diligence packet metadata for review.","SCRIMED can share no-secret diligence metadata with qualified buyers or investors only after human review and recipient scoping.","SCRIMED explicitly withholds public, customer-specific, PHI, clinical, certification, production, connector, and go-live claims until qualified authorization exists."],"blockedClaims":["packet share guard is public distribution approval","packet share guard is production approval","recipient is authorized without human review","customer-specific distribution approved","PHI processing authorized","live clinical care authorized","security or compliance certified","strict AAL2 proof retained","protected boundary-release packet is public-shareable","boundary release approved","production connector approved","customer go-live approved"],"shareInstructions":["Start with the Diligence Packet Manifest and Diligence Release Gate.","Select one recipient class and apply the matching share decision.","Share only allowed no-secret fields after human review; never share withheld material.","Treat protected Boundary Release Evidence Intake Packet route metadata as withheld evidence until approved human AAL2 and qualified review evidence exists.","Keep public, customer-specific, PHI, clinical, certification, production, connector, and go-live claims blocked until qualified authorization exists."],"boundary":"SCRIMED Diligence Packet Share Guard is a no-secret recipient and distribution control. It does not share packets, send emails, create calendar invites, approve public distribution, authorize PHI, certify security or compliance, approve production release, approve customer go-live, or authorize live clinical care."}