Mail service provisioning
Mailbox, SPF, DKIM, DMARC and template setup scaffold with no email delivery.
One authorized client, one real exposure-defense loop, zero fake actions.
Communication infrastructure is reviewed before client or broker contact.
Principal
Jordan Hale
synthetic-principal-001
Findings
12
case-state fallback
StealthScore
54 -> 78
rubric estimate
External actions
0
human approval required
Loop proof
Evidence that this screen supports the Jordan Hale defense loop.
State declaration
No surface claims a live action that is not wired.
Any outside-world touch remains protected, gated, or dry-run. Scaffolded controls can acknowledge intent locally but do not send, provision, upload, scan, call, publish, or mutate external systems.
Capability proof
Route-level proof that this screen stays inside the Jordan Hale loop.
operate
SendGrid mail provisioning
A mail setup checklist that explains DNS and template readiness without pretending email delivery works.
Real today
The route renders mail setup steps and dry-run email templates only.
Scaffolded
SendGrid credentials, DNS verification, mailbox provisioning, and email delivery require backend work and approval.
externalActionTaken: false. No external action is triggered from this route.
operate
Communications hub
A safe message hub for client and partner communication drafts, with delivery clearly disabled in the demo.
Real today
The hub renders templates and approval states from local demo data with no transport call.
Scaffolded
Inbox replies, delivery receipts, outbound sends, and provider webhooks need protected backend integration.
externalActionTaken: false. No external action is triggered from this route.
Support mode
2
Capabilities
1
Docker
1
Vercel
Postgres can persist support and audit facts locally or on Vercel. Deployments without DATABASE_URL stay public-safe and degraded.
integration
SMS/email delivery
Communications surfaces show templates and approval gates only.
No message has been sent and no delivered state is shown.
externalActionTaken: false
integration
Provider provisioning
Cloudflare, AWS, SCC, and mail controls produce scaffold/protected responses only.
No resource has been provisioned.
externalActionTaken: false
safety
Responsible-use gates
Sensitive UI controls and MCP tools state human approval and externalActionTaken:false.
Safety gates remain active in fixture mode.
externalActionTaken: false
Principal context
The only subject in this demo is synthetic.
- Name
- Jordan Hale
- Role
- Synthetic executive principal
- Risk posture
- Elevated public-profile risk with family, property, business-entity, and credential-exposure concerns
- Authorization
- Synthetic or client-authorized only
Work objects
Only objects that advance the defense loop are shown.
EXP-001
Aggregated people-search profile with home + relatives
EXP-002
Property record links residence to principal name
EXP-003
Reserved mobile number indexed against principal
EXP-004
WHOIS-style metadata exposes personal email
EXP-005
Officer filing names principal at residential address
Packet posture
Drafted does not mean sent.
PKT-003Human reviewPrivacy request
No message sent. No takedown submitted.
PKT-004Human reviewTakedown notice
No message sent. No takedown submitted.
Related findings
Synthetic exposure objects connected to this surface.
EXP-001HighNew exposureAggregated people-search profile with home + relatives
Single most reused source feeding downstream aggregators.
EXP-003MediumAction readyReserved mobile number indexed against principal
Direct path to account-takeover via OTP.
EXP-005CriticalWaiting partnerOfficer filing names principal at residential address
Requires legal/trust partner remediation.
Guarded interactions
All sensitive controls are honest scaffolds.
Draft client email
No external action taken from this UI phase.
Evidence, risk, work, approval, report
The single loop remains visible from every route.