Operations
Run log and source-rotation health. Sourced from state/run_log.json (per-run sub-agent allocation) and sources/sources.json (last-successful-fetch timestamps).
Recent runs
| Date | Model | S1 | S2 | S3 | S4 | Failures | Items | Deep dive |
|---|---|---|---|---|---|---|---|---|
| 2026-05-08 | claude-sonnet-4-6 | — | — | — | — | 0 | — |
Stale active sources (>7 days since last successful fetch)
- CISA Known Exploited Vulnerabilities Catalogcisa-kev
- CISA Cybersecurity Advisoriescisa-advisories
- CISA Newscisa-news
- CISA Directivescisa-directives
- CSIRT Italia (ACN) — Alert e bollettinicsirt-acn-it
- CCN-CERT (Spain)ccn-cert-es
- scip AGscip-ch
- OneConsultoneconsult-ch
- InfoGuardinfoguard-ch
- Kudelski Security Researchkudelski-security
- CrowdStrike Threat Researchcrowdstrike
- Volexityvolexity
- Secureworks Counter Threat Unitsecureworks-ctu
- Recorded Future Insikt Grouprecordedfuture-insikt
- PRODAFT — Reportsprodaft
- Sekoia.io blogsekoia
- Group-IBgroup-ib
- The DFIR Reportdfirreport
- Sygniasygnia
- Trustwave SpiderLabstrustwave-spiderlabs
- Cloudflare Cloudforce Onecloudflare-cf1
- Tenable Researchtenable-research
- Google Project Zeroprojectzero
- Zero Day Initiativezdi
- VulnCheckvulncheck
- GreyNoise Labsgreynoise
- Shadowserver Foundation — News & Insightsshadowserver
- Citizen Labcitizen-lab
- Schneier on Securityschneier
- Inside IT Switzerlandinside-it-ch
- Le Monde Informatiquele-monde-info
- Malwarebytes Labsmalwarebytes
- SANS ICSsans-ics
- Microsoft Defender Threat Intel (Sentinel/M365D)sec-ir-firms-edr-blogs
- r/netsecreddit-netsec
See Architecture for how the run log is produced.