{"report_id":"SM-DEMO-2026-001","client":"Demo Client","scope":["https://example.com"],"test_window":{"start":"2026-06-13T09:00:00Z","end":"2026-06-13T11:00:00Z"},"target":"https://example.com","verification_method":"dns_txt","methodology_refs":["OWASP WSTG","NIST SP 800-115","MITRE ATT&CK"],"risk_score":{"score":62,"level":"medium"},"findings":[{"finding_id":"SM-F-001","title":"Missing SPF/DMARC policy","severity":"medium","cvss":"5.3","cwe":"CWE-290","affected_asset":"example.com","endpoint_or_vector":"DNS mail authentication","exploitability":"Spoofed mail can abuse weak domain authentication.","impact":"Brand abuse, phishing and reduced mail trust.","reproduction_steps":["Query TXT records","Check SPF/DMARC alignment","Confirm missing enforcement policy"],"request_response_or_trace":"dig TXT example.com; dig TXT _dmarc.example.com","screenshots_or_video_refs":["evidence/dns-mail-auth.png"],"attack_path_or_attck_mapping":["Reconnaissance","Phishing"],"remediation":"Publish SPF, DKIM and DMARC policy with monitored rollout.","owner":"security","sla_due":"2026-07-13","retest_status":"pending","audit_events":["target_verified","scan_started","report_generated"],"appendix_refs":["A.1 DNS evidence"]}],"ai_brief":{"provider":"Local Ollama","mode":"defensive","data_residency":"local inference when Ollama provider is enabled"}}