Disclosure Status
Informational public advisory framework notice
Overview
PunchCard Labs maintains a public advisory section on the root site for approved security records and high-level publication notices. The section is designed for readers who need a concise public record before consulting the full documentation system.
The advisory index links to documentation when a record needs policy context, schema detail, report templates, or longer technical notes.
Impact
This is an informational publication record. It does not describe a vulnerability, exploit condition, affected third-party product, or emergency remediation event.
The practical effect is procedural: public advisories can be added with consistent metadata, canonical URLs, search-facing summaries, and sitemap entries after release review.
Affected Surface
The affected surface is the public advisory workflow for pclsecurity.com. Researcher-only material, private evidence, controlled collaboration, and internal case handling remain outside the public root.
Detailed advisory templates and policy records continue to live on docs.pclsecurity.com, where they can be maintained as documentation rather than front-page copy.
Resolution
The advisory framework is active. New public records can be added by creating an approved advisory source under www/content/advisories/public/, setting published: true, and running the public-root validation pipeline.
The public-root build generates the advisory index, detail pages, and sitemap entries from approved records.
Timeline
- 2026-05-23: Public root and documentation subdomain were separated.
- 2026-05-23: Public advisory Markdown framework was added to the root site.
- 2026-05-23: Initial informational advisory record published.