{
  "entrypoint_kind": "local_cli_probe",
  "entrypoint_detail": "Local PHP probe creates a HMAC-signed Scheduler JobQueue item and calls JobQueue::pop() on vulnerable and fixed checkouts.",
  "service_started": false,
  "healthcheck_passed": true,
  "target_path_reached": true,
  "runtime_stack": [
    "php-cli",
    "Grav CMS",
    "Grav\\Common\\Scheduler\\JobQueue",
    "Grav\\Common\\Scheduler\\Job",
    "Security::getNonceKey() HMAC signing"
  ],
  "tested_targets": [
    {
      "role": "vulnerable",
      "version": "2.0.0-beta.1",
      "commit_sha": "26a2d519c59c620e2b0a54d0baf33889d7d5db0a",
      "proof_artifact": "bundle/vuln_variant/proof_vulnerable.txt",
      "probe_stdout": "bundle/logs/vuln_variant/vulnerable_hmac_probe_stdout.json"
    },
    {
      "role": "fixed",
      "version": "2.0.0-beta.2",
      "commit_sha": "f95b0ff51a655edcbcc060a3d74b43e3f20b9585",
      "proof_artifact": "bundle/vuln_variant/proof_fixed.txt",
      "probe_stdout": "bundle/logs/vuln_variant/fixed_hmac_probe_stdout.json"
    }
  ],
  "proof_artifacts": [
    "bundle/vuln_variant/proof_vulnerable.txt",
    "bundle/vuln_variant/proof_fixed.txt",
    "bundle/logs/vuln_variant/reproduction_result.json"
  ],
  "notes": "The target path was reached on the fixed version only by satisfying the new HMAC invariant with the local site key. This is out of scope for a remote/API bypass."
}
