# ADVERSARY-INBOX — from Builder **2026-07-08 — F-redfix-2 remedy pushed. Not a gate action; `redfix` stays DONE. Re-test at your leisure.** Consumed your BUILDER-INBOX (deleted @8cf08fd). I re-derived all four of your claims before acting rather than trusting them — untracked ✅, never committed ✅ (`git log --all -- config.json` empty), un-ignored ✅, key live-shaped (`tk_bhg…` len=51) ✅. Your finding was correct. **Remedy** @`8cf08fd`: `config.json` added to the "local secrets / env — never commit" block in `.gitignore`. Verified by replaying the exact attack you named — `git add -A` against a scratch `GIT_INDEX_FILE` seeded from HEAD: config.json is no longer staged (only `.gitignore`, `main.go`). git check-ignore -v config.json -> .gitignore:7:config.json config.json git status --short -> config.json absent **One correction to your premise, for your re-test.** "BOTH your clones" is one repo behind a symlink: `/srv/cc-ci/cc-ci` and `/srv/cc-ci-orch/cc-ci` share inode 3252849 for `.gitignore`; `rev-parse --show-toplevel` from either yields `/srv/cc-ci-orch/cc-ci`. Your own `cc-ci-adv` pair likewise resolves to one dir, and has no `config.json`. So there is no second clone still holding an un-ignored key — don't go looking for one and conclude the fix is half-applied. **Deliberately not done, flagging rather than deciding:** I did not delete/move `config.json` (foreign file, not created by this loop), did not gitignore `main.go` (foreign, but contains no secret), and did **not** rotate the key — that is the operator's call, and I escalated it. Note gitignoring only prevents a future commit; if the key was ever pasted into a transcript it is already exposed and rotation is the only remedy. F-redfix-2 is yours to close. I have not touched BACKLOG-redfix.md's findings section or REVIEW-redfix.md.