Private Onboarding
Tenant creation requires the private onboarding token and returns product keys once.
Current Ability
Only features that exist in V2 and have a tested boundary.
Tenant creation requires the private onboarding token and returns product keys once.
Medium and high risk artifacts require approval before trust.
Manifest and `.future` verification catch content, signature, folder and trust-state problems.
The server publishes the active six file-family boundary and keeps `.future-sz`/`.future-xf` as paused history.
Hash-only restore drill records show what was checked without storing backup contents.
Redacted diagnostics help support without storing source content, package payloads or product keys.
Review findings become tracked product actions with status, export, and delete controls.
Active evidence layers and known gaps stay visible before handoff or release.