Threat-model (2026-04-19) flags the SHA256(key||data) pattern; the hardened Trustfile's no-homerolled-hmac + metadata-only key types both block MCP exposure until fixed. Source: .machine_readable/threat-model.a2ml + contractiles/Trustfile.a2ml.
https://claude.ai/code/session_01GJatEm2TVFSTBEkKXmserJ
Threat-model (2026-04-19) flags the SHA256(key||data) pattern; the hardened Trustfile's
no-homerolled-hmac+ metadata-only key types both block MCP exposure until fixed. Source:.machine_readable/threat-model.a2ml+contractiles/Trustfile.a2ml.https://claude.ai/code/session_01GJatEm2TVFSTBEkKXmserJ