{"root_cid":"bafybeihbaswcapxpkfwiwrs6vojdfj5j4fjm3yhbcskanycdplffp5g4cq","model":"openai/gpt-5.4-mini","analyzed_at":"2026-05-03T00:56:12.406Z","result":{"schema_version":1,"category":"Placeholder","category_confidence":0.96,"summary":"A minimal fundamentalia.eth testflight page with no app functionality, alongside deploy config files that expose sensitive credentials.","signals":["root/index.html: <h1>fundamentalia.eth — v0 (testflight)</h1> indicates a sparse testflight landing page","root/index.html: only a title and one heading; no navigation, app logic, or content modules are present","root/secure-deploy.config.json: contains 'ownerPrivateKey' and 'safeApiKey' secrets","root/secure-deploy.config.yaml: repeats 'ownerPrivateKey' and 'safeApiKey' in plaintext","analysis-context.latest_probe.title = fundamentalia; mounted content still shows only a testflight shell"],"quality":{"tier":"low","score":0.18,"is_substantive":false,"is_redirect_only":false,"is_placeholder":true,"rationale":"The mounted root is just a thin testflight page with no functional UX or content, so it reads as a placeholder rather than a substantive app or site."},"security":{"risk":"critical","risk_score":0.99,"threat_type":"other","safe_to_list":false,"findings":[{"type":"other","severity":"critical","confidence":1,"evidence":"root/secure-deploy.config.json line 7: \"ownerPrivateKey\": \"0x14ee9985a9c855eb2d0d4399fb838a619edc73f8532cedf46149d2110520baba\"","file":"root/secure-deploy.config.json"},{"type":"other","severity":"high","confidence":1,"evidence":"root/secure-deploy.config.yaml line 13 contains the pattern safeApiKey: with a plaintext token; root/secure-deploy.config.json line 6 repeats the same credential in plaintext","file":"root/secure-deploy.config.yaml"}]},"files_reviewed":["analysis-context.json","root/index.html","root/secure-deploy.config.json","root/secure-deploy.config.yaml"]}}