Launch scope: one public GitHub repository at one immutable default-branch revision. This is not a vulnerability scan, security review, compliance review, penetration test, or code-remediation engagement. No private repositories, credentials, customer data, or production access. Outcomes are not guaranteed.