Named-user entitlement
A team approval does not create a public link. Each approved analyst verifies their own email and receives a separate seven-day grant.
Security
The portal is designed to answer four questions precisely: who requested access, who approved it, which exact installer was granted, and when a named user received a short-lived delivery URL.
A team approval does not create a public link. Each approved analyst verifies their own email and receives a separate seven-day grant.
Each grant can issue at most two download URLs. Each URL expires after five minutes and is never stored or logged.
Verification, approval, grant, reset, revocation, issuance, artifact identity, onboarding, and closure are recorded as immutable events.
The access portal does not collect source documents, filenames, SQL details, screenshots, or analyst content.
An approver can select only a PRE-cleared catalog entry. Artifact keys are digest-addressed and registered by Platform.
The legacy public download route is retired. Controlled-pilot delivery never reads or advances latest.json.
Portal data boundary