# Garnet

> Opt-in public security reports (runs, issues, detections) for humans, search engines, and automated tools.

## Canonical base
https://app.garnet.ai

## Machine-readable index
https://app.garnet.ai/.well-known/garnet-public-reports

## Human overview
https://app.garnet.ai/public

## URL patterns
- HTML: /public/runs/{id} | /public/issues/{id} | /public/detections/{id}
- JSON: /api/public/runs/{id} | /api/public/issues/{id} | /api/public/detections/{id}
- OG image: /api/og/runs/{id} | …

## Conventions
- Each HTML report includes a JSON alternate (link rel) and JSON-LD with a DataDownload link to the JSON URL.
- JSON responses are cache-friendly; 404 means private, expired, or never published.
- Run profile JSON uses schema_version "0.1" (see Garnet docs / types/profile.ts).

## Policy
- Only publish data you are allowed to share. Content is user-controlled snapshots stored in Garnet infrastructure.
- Prefer fetching JSON for programmatic analysis; use HTML for human reading.

## Sitemap
https://app.garnet.ai/sitemap.xml