Operator Trust Panel
assure.beane.me
failControl assurance for public services, evidence freshness, protection posture, and TLS health.
Executes a fresh live run, persists it to SQLite, and reloads the operator view.
Check Inventory
Latest persisted evidence for every control
Every row is a normalized result from the reusable assurance framework, including category, severity, target, timing, and structured evidence.
Latest Check Set
Current persisted evidence for each assurance control.
| Status | Severity | Check | Target | Checked | Runtime |
|---|---|---|---|---|---|
| fail | high |
Public Header Protection
exposure/protection checks 4 protection header gaps across 4 public surfaces. Evidence{
"checked_surfaces": [
{
"headers_seen": [
"accept-ranges",
"access-control-allow-origin",
"cache-control",
"connection",
"content-length",
"content-type",
"date",
"etag",
"last-modified",
"server",
"vary"
],
"label": "threats api",
"status": "ok",
"status_code": 200,
"url": "https://threats.beane.me/api"
},
{
"headers_seen": [
"alt-svc",
"connection",
"content-length",
"content-type",
"date",
"server",
"via"
],
"label": "fleet api",
"status": "ok",
"status_code": 200,
"url": "https://fleet.beane.me/api/health"
},
{
"headers_seen": [
"alt-svc",
"connection",
"content-length",
"content-type",
"date",
"referrer-policy",
"server",
"strict-transport-security",
"via",
"x-content-type-options",
"x-frame-options"
],
"label": "health api",
"status": "ok",
"status_code": 200,
"url": "https://health.beane.me/api/status"
},
{
"headers_seen": [
"alt-svc",
"connection",
"content-length",
"content-type",
"date",
"referrer-policy",
"server",
"strict-transport-security",
"via",
"x-content-type-options",
"x-frame-options"
],
"label": "observe",
"status": "ok",
"status_code": 200,
"url": "https://observe.beane.me"
},
{
"headers_seen": [
"cache-control",
"connection",
"content-type",
"date",
"set-cookie",
"strict-transport-security",
"transfer-encoding",
"x-frame-options"
],
"label": "git",
"status": "ok",
"status_code": 200,
"url": "https://git.beane.me"
},
{
"headers_seen": [
"accept-ranges",
"alt-svc",
"connection",
"content-length",
"content-type",
"date",
"etag",
"last-modified",
"referrer-policy",
"server",
"vary",
"x-content-type-options",
"x-frame-options",
"x-permitted-cross-domain-policies",
"x-xss-protection"
],
"label": "backups",
"status": "ok",
"status_code": 200,
"url": "https://backups.beane.me"
},
{
"headers_seen": [
"accept-ranges",
"alt-svc",
"connection",
"content-length",
"content-type",
"date",
"etag",
"last-modified",
"referrer-policy",
"server",
"vary",
"x-content-type-options",
"x-frame-options",
"x-permitted-cross-domain-policies",
"x-xss-protection"
],
"label": "vuln",
"status": "ok",
"status_code": 200,
"url": "https://vuln.beane.me"
},
{
"headers_seen": [
"access-control-allow-origin",
"alt-svc",
"connection",
"content-length",
"content-type",
"date",
"referrer-policy",
"server",
"strict-transport-security",
"via",
"x-content-type-options",
"x-frame-options"
],
"label": "intel api",
"status": "ok",
"status_code": 200,
"url": "https://intel.beane.me/api/countries"
}
],
"findings": [
{
"critical": true,
"header": "strict-transport-security",
"issue": "missing",
"surface": "threats api",
"url": "https://threats.beane.me/api"
},
{
"critical": true,
"header": "strict-transport-security",
"issue": "missing",
"surface": "fleet api",
"url": "https://fleet.beane.me/api/health"
},
{
"critical": true,
"header": "strict-transport-security",
"issue": "missing",
"surface": "backups",
"url": "https://backups.beane.me"
},
{
"critical": true,
"header": "strict-transport-security",
"issue": "missing",
"surface": "vuln",
"url": "https://vuln.beane.me"
}
]
}
|
public core surfaces | 2026-03-30 10:38:13 EDT | 2329 ms |
| warn | critical |
Fleet Node Liveness
evidence freshness Oldest fleet heartbeat is 26m 43s old. Evidence{
"content_type": "application/json",
"http_status": 200,
"node_ages_seconds": {
"ares": 449,
"argus": 550,
"hermes": 1603,
"iris": 1485,
"triton": 222,
"vault": 490,
"zephyrus": 267
},
"oldest_age_seconds": 1603,
"oldest_node": "hermes",
"response_ms": 19,
"stale_nodes": [
"hermes",
"iris"
],
"url": "https://fleet.beane.me/api/fleet"
}
|
https://fleet.beane.me/api/fleet | 2026-03-30 10:38:12 EDT | 19 ms |
| pass | critical |
Health Control API Validity
endpoint validity Health control reported 6 routed services. Evidence{
"content_type": "application/json; charset=utf-8",
"generated_at": "2026-03-30T14:36:48.139986+00:00",
"http_status": 200,
"refresh_seconds": 120,
"response_ms": 383,
"total_services": 6,
"unhealthy_services": 0,
"url": "https://health.beane.me/api/status"
}
|
https://health.beane.me/api/status | 2026-03-30 10:38:10 EDT | 383 ms |
| pass | critical |
Health Control Freshness
evidence freshness Routing control status was refreshed 1m 24s ago. Evidence{
"age_seconds": 84,
"content_type": "application/json; charset=utf-8",
"generated_at": "2026-03-30T14:36:48.139986+00:00",
"http_status": 200,
"refresh_seconds": 120,
"response_ms": 305,
"source": "node-health",
"url": "https://health.beane.me/api/status"
}
|
https://health.beane.me/api/status | 2026-03-30 10:38:12 EDT | 305 ms |
| pass | critical |
Health Failover Protection
exposure/protection checks All 6 routed services have healthy primary and mirror paths with correct DNS. Evidence{
"content_type": "application/json; charset=utf-8",
"http_status": 200,
"response_ms": 220,
"service_count": 6,
"url": "https://health.beane.me/api/status"
}
|
https://health.beane.me/api/status | 2026-03-30 10:38:13 EDT | 220 ms |
| pass | critical |
Health Routing Data Sanity
data sanity Routing control aggregates match per-service evidence. Evidence{
"actual_dns_mismatches": 0,
"actual_total": 6,
"actual_unhealthy": 0,
"content_type": "application/json; charset=utf-8",
"http_status": 200,
"mismatches": [],
"reported_dns_mismatches": 0,
"reported_total": 6,
"reported_unhealthy": 0,
"response_ms": 224,
"url": "https://health.beane.me/api/status"
}
|
https://health.beane.me/api/status | 2026-03-30 10:38:13 EDT | 224 ms |
| pass | high |
Backups Health Endpoint
endpoint validity Health endpoint responded with `ok triton`. Evidence{
"body": "ok triton",
"content_type": "text/plain",
"http_status": 200,
"response_ms": 246,
"url": "https://triton.backups.beane.me/_health"
}
|
https://triton.backups.beane.me/_health | 2026-03-30 10:38:11 EDT | 246 ms |
| pass | high |
Fleet Health API Validity
endpoint validity Fleet health reports 7 nodes with status ok. Evidence{
"api_version": "v1",
"content_type": "application/json",
"generated_at": "2026-03-30T14:38:10.788726Z",
"http_status": 200,
"node_count": 7,
"reported_status": "ok",
"response_ms": 30,
"url": "https://fleet.beane.me/api/health"
}
|
https://fleet.beane.me/api/health | 2026-03-30 10:38:10 EDT | 30 ms |
| pass | high |
Fleet Health Freshness
evidence freshness Fleet health data was generated 0s ago. Evidence{
"age_seconds": 0,
"content_type": "application/json",
"generated_at": "2026-03-30T14:38:12.598301+00:00",
"http_status": 200,
"node_count": 7,
"response_ms": 52,
"url": "https://fleet.beane.me/api/health"
}
|
https://fleet.beane.me/api/health | 2026-03-30 10:38:12 EDT | 52 ms |
| pass | high |
Fleet Summary API Validity
endpoint validity Fleet summary published 7 node records. Evidence{
"content_type": "application/json",
"generated_at": "2026-03-30T14:38:10.808596Z",
"http_status": 200,
"node_keys": [
"ares",
"argus",
"hermes",
"iris",
"triton",
"vault",
"zephyrus"
],
"response_ms": 19,
"total_nodes": 7,
"url": "https://fleet.beane.me/api/fleet"
}
|
https://fleet.beane.me/api/fleet | 2026-03-30 10:38:10 EDT | 19 ms |
| pass | high |
Fleet Summary Data Sanity
data sanity Fleet aggregate metrics align with individual node reports. Evidence{
"actual_healthy": 7,
"actual_total": 7,
"content_type": "application/json",
"http_status": 200,
"mismatches": [],
"reported_healthy": 7,
"reported_total": 7,
"response_ms": 19,
"url": "https://fleet.beane.me/api/fleet"
}
|
https://fleet.beane.me/api/fleet | 2026-03-30 10:38:13 EDT | 19 ms |
| pass | high |
Threat Evidence Freshness
evidence freshness Threat evidence was generated 8m 8s ago. Evidence{
"age_seconds": 488,
"content_type": "application/json",
"generated_at": "2026-03-30T14:30:04.146232+00:00",
"http_status": 200,
"latest_last_seen": "2026-03-30T13:57:55+00:00",
"response_ms": 291,
"threat_count": 25,
"url": "https://threats.beane.me/api"
}
|
https://threats.beane.me/api | 2026-03-30 10:38:12 EDT | 291 ms |
| pass | high |
Threat Feed Data Sanity
data sanity Threat feed counters and evidence fields are internally consistent. Evidence{
"actual_unique_ips": 25,
"content_type": "application/json",
"http_status": 200,
"missing_fields": [],
"reported_unique_ips": 25,
"response_ms": 292,
"threat_count": 25,
"url": "https://threats.beane.me/api"
}
|
https://threats.beane.me/api | 2026-03-30 10:38:12 EDT | 292 ms |
| pass | high |
Threats API Validity
endpoint validity 25 unique IPs across 25 published threat records. Evidence{
"content_type": "application/json",
"generated_at": "2026-03-30T14:30:04.146232Z",
"http_status": 200,
"latest_last_seen": "2026-03-30T13:57:55+00:00",
"node": "triton",
"response_ms": 355,
"role": "main",
"threat_count": 25,
"unique_ips": 25,
"url": "https://threats.beane.me/api"
}
|
https://threats.beane.me/api | 2026-03-30 10:38:10 EDT | 356 ms |
| pass | high |
Vuln Health Endpoint
endpoint validity Health endpoint responded with `ok triton`. Evidence{
"body": "ok triton",
"content_type": "text/plain",
"http_status": 200,
"response_ms": 324,
"url": "https://triton.vuln.beane.me/_health"
}
|
https://triton.vuln.beane.me/_health | 2026-03-30 10:38:11 EDT | 324 ms |
| pass | medium |
Backups TLS Expiry
TLS expiry Certificate valid for another 80.6 days. Evidence{
"host": "backups.beane.me",
"issuer": "countryName=US, organizationName=Let's Encrypt, commonName=R12",
"not_after": "2026-06-19T04:18:39+00:00",
"port": 443,
"san_count": 1,
"subject": "commonName=backups.beane.me"
}
|
backups.beane.me | 2026-03-30 10:38:16 EDT | 202 ms |
| pass | medium |
Fleet TLS Expiry
TLS expiry Certificate valid for another 66.0 days. Evidence{
"host": "fleet.beane.me",
"issuer": "countryName=US, organizationName=Let's Encrypt, commonName=E7",
"not_after": "2026-06-04T14:07:50+00:00",
"port": 443,
"san_count": 1,
"subject": "commonName=fleet.beane.me"
}
|
fleet.beane.me | 2026-03-30 10:38:16 EDT | 36 ms |
| pass | medium |
Git TLS Expiry
TLS expiry Certificate valid for another 86.0 days. Evidence{
"host": "git.beane.me",
"issuer": "countryName=US, organizationName=Let's Encrypt, commonName=R12",
"not_after": "2026-06-24T13:55:05+00:00",
"port": 443,
"san_count": 1,
"subject": "commonName=git.beane.me"
}
|
git.beane.me | 2026-03-30 10:38:17 EDT | 183 ms |
| pass | medium |
Health TLS Expiry
TLS expiry Certificate valid for another 77.2 days. Evidence{
"host": "health.beane.me",
"issuer": "countryName=US, organizationName=Let's Encrypt, commonName=E7",
"not_after": "2026-06-15T18:20:29+00:00",
"port": 443,
"san_count": 1,
"subject": "commonName=health.beane.me"
}
|
health.beane.me | 2026-03-30 10:38:16 EDT | 164 ms |
| pass | medium |
Intel Aggregate Data Sanity
data sanity Intel aggregate counts are internally consistent. Evidence{
"content_type": "application/json",
"country_count": 5,
"http_status": 200,
"non_negative": true,
"response_ms": 260,
"sorted_descending": true,
"top_count_sum": 2847,
"total_bans": 4024,
"url": "https://intel.beane.me/api/countries"
}
|
https://intel.beane.me/api/countries | 2026-03-30 10:38:13 EDT | 260 ms |
| pass | medium |
Intel Countries API Validity
endpoint validity Intel feed published 5 top-country entries. Evidence{
"content_type": "application/json",
"http_status": 200,
"response_ms": 256,
"top_countries": [
{
"count": 1294,
"country": "US"
},
{
"count": 621,
"country": "CA"
},
{
"count": 406,
"country": "FR"
},
{
"count": 265,
"country": "NL"
},
{
"count": 261,
"country": "IE"
}
],
"total_bans": 4024,
"url": "https://intel.beane.me/api/countries"
}
|
https://intel.beane.me/api/countries | 2026-03-30 10:38:11 EDT | 257 ms |
| pass | medium |
Intel TLS Expiry
TLS expiry Certificate valid for another 31.1 days. Evidence{
"host": "intel.beane.me",
"issuer": "countryName=US, organizationName=Let's Encrypt, commonName=E7",
"not_after": "2026-04-30T17:32:26+00:00",
"port": 443,
"san_count": 1,
"subject": "commonName=intel.beane.me"
}
|
intel.beane.me | 2026-03-30 10:38:17 EDT | 162 ms |
| pass | medium |
Observe Health Endpoint
endpoint validity Health endpoint responded with `ok argus`. Evidence{
"body": "ok argus",
"content_type": "text/plain; charset=utf-8",
"http_status": 200,
"response_ms": 233,
"url": "https://argus.observe.beane.me/_health"
}
|
https://argus.observe.beane.me/_health | 2026-03-30 10:38:12 EDT | 233 ms |
| pass | medium |
Observe TLS Expiry
TLS expiry Certificate valid for another 76.8 days. Evidence{
"host": "observe.beane.me",
"issuer": "countryName=US, organizationName=Let's Encrypt, commonName=E8",
"not_after": "2026-06-15T10:09:43+00:00",
"port": 443,
"san_count": 1,
"subject": "commonName=observe.beane.me"
}
|
observe.beane.me | 2026-03-30 10:38:17 EDT | 213 ms |
| pass | medium |
Threats TLS Expiry
TLS expiry Certificate valid for another 80.6 days. Evidence{
"host": "threats.beane.me",
"issuer": "countryName=US, organizationName=Let's Encrypt, commonName=R12",
"not_after": "2026-06-19T04:19:04+00:00",
"port": 443,
"san_count": 1,
"subject": "commonName=threats.beane.me"
}
|
threats.beane.me | 2026-03-30 10:38:16 EDT | 164 ms |
| pass | medium |
Vuln TLS Expiry
TLS expiry Certificate valid for another 80.6 days. Evidence{
"host": "vuln.beane.me",
"issuer": "countryName=US, organizationName=Let's Encrypt, commonName=R12",
"not_after": "2026-06-19T04:19:16+00:00",
"port": 443,
"san_count": 1,
"subject": "commonName=vuln.beane.me"
}
|
vuln.beane.me | 2026-03-30 10:38:16 EDT | 164 ms |