Running one project: verify [NC_MARKER]: getTLogTimestamp() returned undefined for inclusionProof-only entry (no inclusionPromise) -> untrusted integratedTime rejected [NC_MARKER]: Verifier.verify() (public-key path) rejected with TIMESTAMP_ERROR -> inclusionProof-only integratedTime no longer counts toward timestampThreshold [NC_MARKER]: Verifier.verify() (certificate path) rejected with TIMESTAMP_ERROR -> inclusionProof-only integratedTime not counted as a trusted timestamp; no signed timestamp present PASS verify packages/verify/src/__tests__/cve_repro.test.ts CVE-2026-48816 Part A: getTLogTimestamp callsite (inclusionProof-only entry) ✓ records whether the unauthenticated integratedTime is accepted as a trusted timestamp (1 ms) Part B: Verifier.verify() public-key path (inclusionProof-only sole timestamp) ✓ records whether the unauthenticated integratedTime satisfies timestampThreshold + key validity (3 ms) Part C: Verifier.verify() certificate path (real fixture, expired cert accepted via untrusted integratedTime) ✓ records whether an expired cert is accepted using an attacker-chosen inclusionProof-only integratedTime (2 ms) Test Suites: 1 passed, 1 total Tests: 3 passed, 3 total Snapshots: 0 total Time: 0.13 s, estimated 1 s Ran all test suites matching cve_repro.test.ts.