Security
Security
Paper Wigs exposes public read surfaces and protects mutating operations.
Auth Standard
Protected actions require PLATPHORM_API_KEY using Authorization: Bearer or X-PlatPhorm-API-Key. Site-specific platform API keys are not introduced.
Sensitive Fingerprints
Raw JA4, x-vercel-ja4-digest, raw headers, IPs, cookies, session IDs, customer data, and payment data are not exposed publicly.
Safe Public Debugging
Web4 status, scorecard, fingerprints, provenance, policy files, and LLMS files are public-safe read-only surfaces.