[
  {
    "run_id": "gitea-livecheck-20260316",
    "system_id": "gitea",
    "advisory_id": "gitea--CVE-2025-68939",
    "repro_profile_id": "file-upload-generic",
    "verification_status": "blocked-artifact",
    "verification_mode": "real",
    "artifact_mode": "official-image",
    "target_env": "local-docker",
    "compose_services": [
      "app"
    ],
    "baseline_refs": [],
    "attack_steps": [],
    "browser_refs": [],
    "browser_evidence": {
      "required": true,
      "present": false,
      "refs": [],
      "baseline_refs": [],
      "proof_refs": [],
      "baseline_title": null,
      "proof_title": null
    },
    "container_log_refs": [],
    "request_log_refs": [],
    "compose_refs": [
      "/Users/x/websafe/06-case-studies/generated-runs/gitea-livecheck-20260316/compose/compose.yaml"
    ],
    "timeline": [
      {
        "at": "2026-03-17T07:02:55+00:00",
        "step": "select-advisory",
        "status": "completed",
        "detail": "gitea--CVE-2025-68939"
      },
      {
        "at": "2026-03-17T07:02:55+00:00",
        "step": "resolve-repro-profile",
        "status": "completed",
        "detail": "file-upload-generic"
      },
      {
        "at": "2026-03-17T07:02:56+00:00",
        "step": "provision-compose-environment",
        "status": "blocked-artifact",
        "detail": "unable to get image 'gitea/gitea:1.22.6': Cannot connect to the Docker daemon at unix:///Users/x/.docker/run/docker.sock. Is the docker daemon running?"
      },
      {
        "at": "2026-03-17T07:02:56+00:00",
        "step": "baseline-snapshot",
        "status": "skipped",
        "detail": "no baseline urls or provisioning blocked"
      },
      {
        "at": "2026-03-17T07:02:56+00:00",
        "step": "browser-replay-before-attack",
        "status": "skipped",
        "detail": "baseline browser capture unavailable"
      },
      {
        "at": "2026-03-17T07:02:56+00:00",
        "step": "controlled-attack-chain",
        "status": "skipped",
        "detail": "provisioning blocked"
      },
      {
        "at": "2026-03-17T07:02:56+00:00",
        "step": "browser-replay-after-attack",
        "status": "skipped",
        "detail": "proof browser capture unavailable"
      },
      {
        "at": "2026-03-17T07:02:56+00:00",
        "step": "collect-logs-and-evidence",
        "status": "skipped",
        "detail": "container_logs=0"
      },
      {
        "at": "2026-03-17T07:02:56+00:00",
        "step": "update-registry-and-reports",
        "status": "completed",
        "detail": "gitea-livecheck-20260316"
      }
    ],
    "started_at": "2026-03-17T07:02:55+00:00",
    "finished_at": "2026-03-17T07:02:56+00:00",
    "blocked_reason": "unable to get image 'gitea/gitea:1.22.6': Cannot connect to the Docker daemon at unix:///Users/x/.docker/run/docker.sock. Is the docker daemon running?",
    "report_refs": {
      "bundle_dir": "/Users/x/websafe/06-case-studies/generated-runs/gitea-livecheck-20260316",
      "report_md": "/Users/x/websafe/06-case-studies/generated-runs/gitea-livecheck-20260316/report.md",
      "report_html": "/Users/x/websafe/06-case-studies/generated-runs/gitea-livecheck-20260316/report.html",
      "timeline": "/Users/x/websafe/06-case-studies/generated-runs/gitea-livecheck-20260316/timeline.mmd"
    },
    "dashboard_refs": {
      "report_html": "./runs/gitea-livecheck-20260316/report.html",
      "report_md": "./runs/gitea-livecheck-20260316/report.md",
      "timeline": "./runs/gitea-livecheck-20260316/timeline.mmd",
      "bundle": "./runs/gitea-livecheck-20260316/run.json"
    },
    "browser_links": [],
    "container_links": [],
    "request_links": []
  },
  {
    "run_id": "gitea-gitea--CVE-2025-68939-20260317063330",
    "system_id": "gitea",
    "advisory_id": "gitea--CVE-2025-68939",
    "repro_profile_id": "file-upload-generic",
    "verification_status": "blocked-artifact",
    "verification_mode": "real",
    "artifact_mode": "official-image",
    "target_env": "local-docker",
    "compose_services": [
      "app"
    ],
    "baseline_refs": [],
    "attack_steps": [],
    "browser_refs": [],
    "container_log_refs": [],
    "request_log_refs": [
      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2025-68939-20260317063330/logs/attack.json",
      "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2025-68939-20260317063330/logs/baseline.json"
    ],
    "timeline": [],
    "started_at": "2026-03-17T06:33:30+00:00",
    "finished_at": "2026-03-17T06:33:30+00:00",
    "blocked_reason": "unable to get image 'gitea/gitea:1.22.6': Cannot connect to the Docker daemon at unix:///Users/x/.docker/run/docker.sock. Is the docker daemon running?",
    "report_refs": {
      "bundle_dir": "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2025-68939-20260317063330",
      "report_md": "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2025-68939-20260317063330/report.md",
      "report_html": "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2025-68939-20260317063330/report.html",
      "timeline": "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2025-68939-20260317063330/timeline.mmd"
    },
    "dashboard_refs": {
      "report_html": "./runs/gitea-gitea--CVE-2025-68939-20260317063330/report.html",
      "report_md": "./runs/gitea-gitea--CVE-2025-68939-20260317063330/report.md",
      "timeline": "./runs/gitea-gitea--CVE-2025-68939-20260317063330/timeline.mmd",
      "bundle": "./runs/gitea-gitea--CVE-2025-68939-20260317063330/run.json"
    },
    "browser_links": [],
    "container_links": [],
    "request_links": [
      "./runs/gitea-gitea--CVE-2025-68939-20260317063330/logs/attack.json",
      "./runs/gitea-gitea--CVE-2025-68939-20260317063330/logs/baseline.json"
    ]
  },
  {
    "run_id": "nextjs-nextjs--CVE-2025-29927-20260317063047",
    "system_id": "nextjs",
    "advisory_id": "nextjs--CVE-2025-29927",
    "repro_profile_id": "authz-bypass-generic",
    "verification_status": "triage-manual",
    "verification_mode": "real",
    "artifact_mode": "official-source",
    "target_env": "local-docker",
    "compose_services": [
      "app"
    ],
    "baseline_refs": [
      "/Users/x/websafe/06-case-studies/generated-runs/nextjs-nextjs--CVE-2025-29927-20260317063047/logs/baseline.json"
    ],
    "attack_steps": [
      {
        "kind": "note",
        "tool": null,
        "args": [],
        "status": "planned"
      }
    ],
    "browser_refs": [],
    "container_log_refs": [],
    "request_log_refs": [
      "/Users/x/websafe/06-case-studies/generated-runs/nextjs-nextjs--CVE-2025-29927-20260317063047/logs/attack.json",
      "/Users/x/websafe/06-case-studies/generated-runs/nextjs-nextjs--CVE-2025-29927-20260317063047/logs/baseline.json"
    ],
    "timeline": [],
    "started_at": "2026-03-17T06:30:47+00:00",
    "finished_at": "2026-03-17T06:30:47+00:00",
    "blocked_reason": "dry-run only",
    "report_refs": {
      "bundle_dir": "/Users/x/websafe/06-case-studies/generated-runs/nextjs-nextjs--CVE-2025-29927-20260317063047",
      "report_md": "/Users/x/websafe/06-case-studies/generated-runs/nextjs-nextjs--CVE-2025-29927-20260317063047/report.md",
      "report_html": "/Users/x/websafe/06-case-studies/generated-runs/nextjs-nextjs--CVE-2025-29927-20260317063047/report.html",
      "timeline": "/Users/x/websafe/06-case-studies/generated-runs/nextjs-nextjs--CVE-2025-29927-20260317063047/timeline.mmd"
    },
    "dashboard_refs": {
      "report_html": "./runs/nextjs-nextjs--CVE-2025-29927-20260317063047/report.html",
      "report_md": "./runs/nextjs-nextjs--CVE-2025-29927-20260317063047/report.md",
      "timeline": "./runs/nextjs-nextjs--CVE-2025-29927-20260317063047/timeline.mmd",
      "bundle": "./runs/nextjs-nextjs--CVE-2025-29927-20260317063047/run.json"
    },
    "browser_links": [],
    "container_links": [],
    "request_links": [
      "./runs/nextjs-nextjs--CVE-2025-29927-20260317063047/logs/attack.json",
      "./runs/nextjs-nextjs--CVE-2025-29927-20260317063047/logs/baseline.json"
    ]
  }
]