# Treasury Payroll Patch Under Live Review Version: `v1` Scenario slug: `treasury-payroll-14` ## What this replay demonstrates This is a public-safe VaultDesk replay of a consequential remote maintenance operation on a protected treasury payroll workstation. The replay keeps the full governed loop visible: - operator enters the session
- reviewer and witness are already attached
- a consequential action is held or denied
- evidence remains attached to the same work
- AI can propose, but not self-authorize ## Protected system - Asset: Treasury payroll workstation
- Environment: dedicated demo tenant / Windows host + Android witness lane
- Session: `session-demo-treasury-payroll-14`
- Policy: `Treasury Patch Guardrail` ## Session principals - Aly Reyes / primary operator
- Jo Hart / release reviewer
- Field Android 06 / mobile witness
- VaultDesk bounded assistant / proposal-only lane ## Consequential moments 1. The replay opens with reviewer hold already active.
2. Clipboard write is denied inline with visible policy consequence.
3. Recording readiness, posture drift, and attestation remain attached before export.
4. An AI remediation plan is visible, but privileged execution remains reviewer-held. ## What survives after the action - session seal receipt
- denied-action receipt
- recording checksum and evidence chain
- reviewer hold and attestation posture
- attribution record for the AI proposal ## Provenance This scenario pack is derived from governed internal validation evidence. - operational run history remains non-public
- internal gate and readiness records remain non-public
- repo-local artifact paths remain non-public ## Protected boundary This download is a public-safe replay brief, not a live tenant export. - no customer data
- no live tenant authority
- replay assets and metadata are watermarked
- source evidence remains governed inside VaultDesk operations