Admin
Tester acceptance pack
Tester-safe preview. Founder mode is hidden — generate the founder pack via node scripts/generate_s34f_tester_acceptance_pack.cjs --founder.
Markdown preview
# AgentProof tester acceptance pack Staging URL: https://staging.example.test ## Links - **Private beta entry** — https://staging.example.test/beta Three paths: connect Microsoft, add a non-Microsoft agent, or try demo data. - **Sign-in** — https://staging.example.test/beta/sign-in Sign in with your tester invitation. - **Demo** — https://staging.example.test/demo Walk through a guided demo without using your own data. - **Trust** — https://staging.example.test/beta/trust What AgentProof stores and what it does not. - **Help** — https://staging.example.test/beta/help Self-serve help for common questions. ## What to test now - Open the /beta page and confirm the three paths render. - Sign in with the invitation link if you received one. - Try the demo path on /demo and review the sample report. - Add a non-Microsoft agent and complete a short readiness review. - If you have a Microsoft tenant, click Connect Microsoft and follow the read-only flow. - Generate a readiness report and use the browser print dialog to save a print-ready copy. ## What is not ready yet - Public registration is not open. The product is invitation-only. - A true PDF export service is not shipped — the report is print-ready via the browser. - Payments, pricing, invoicing, and VAT are not implemented in this phase. - Email sending may be disabled in this environment — copy the invite link instead. ## How to report issues - Use the in-product feedback button when available. The form asks for the page, what you expected, and what you saw. - Pick a severity: blocker / high / medium / low / polish. - Send a short note. Avoid pasting screenshots that contain tokens, secrets, or other tester accounts. ## What not to share - Do not share your Microsoft password or any access token. - Do not share secrets, API keys, or service-role keys. - Do not share other testers' invitation links — invitations are single-use. - Do not share screenshots that include other people's email addresses or tenant secrets. ## Security reminder - AgentProof never asks for your source code. - AgentProof never asks for your Microsoft client secret. - The Microsoft connection uses read-only permissions. - Disconnecting Microsoft does not delete your prior reports. ## Screenshot instructions - Take screenshots with your browser's built-in tool — no third-party uploader. - Redact anything that looks like a token, email address you do not own, or secret. - Crop screenshots so only the AgentProof UI is visible. ## Checklist - [ ] **C1 — Open /beta and see the three paths** Microsoft / Manual / Demo should all be visible and labelled honestly. - [ ] **C2 — Sign in with an invitation link** The invitation accept page should accept your single-use token. - [ ] **C3 — Try the demo at /demo** The demo should be isolated. Demo data must not appear in your real workspace. - [ ] **C4 — Add a non-Microsoft agent** Describe a chatbot / internal agent and confirm the report does not claim it was discovered. - [ ] **C5 — Generate a readiness report** Confirm the report renders cover, score, evidence, risks, controls, and methodology. - [ ] **C6 — Use the browser print dialog** Confirm the print-ready report layout is clean. AgentProof does not promise a true PDF export. - [ ] **C7 — Disconnect Microsoft (if you connected)** Confirm that disconnecting does not delete prior reviews / reports. - [ ] **C8 — Submit feedback** Use the feedback panel with a real severity to confirm the flow works.
JSON checklist preview
{
"pack_name": "AgentProof tester acceptance pack",
"staging_url": "https://staging.example.test",
"founder_mode": false,
"links": [
{
"label": "Private beta entry",
"href": "https://staging.example.test/beta",
"description": "Three paths: connect Microsoft, add a non-Microsoft agent, or try demo data."
},
{
"label": "Sign-in",
"href": "https://staging.example.test/beta/sign-in",
"description": "Sign in with your tester invitation."
},
{
"label": "Demo",
"href": "https://staging.example.test/demo",
"description": "Walk through a guided demo without using your own data."
},
{
"label": "Trust",
"href": "https://staging.example.test/beta/trust",
"description": "What AgentProof stores and what it does not."
},
{
"label": "Help",
"href": "https://staging.example.test/beta/help",
"description": "Self-serve help for common questions."
}
],
"what_to_test_now": [
"Open the /beta page and confirm the three paths render.",
"Sign in with the invitation link if you received one.",
"Try the demo path on /demo and review the sample report.",
"Add a non-Microsoft agent and complete a short readiness review.",
"If you have a Microsoft tenant, click Connect Microsoft and follow the read-only flow.",
"Generate a readiness report and use the browser print dialog to save a print-ready copy."
],
"what_is_not_ready_yet": [
"Public registration is not open. The product is invitation-only.",
"A true PDF export service is not shipped — the report is print-ready via the browser.",
"Payments, pricing, invoicing, and VAT are not implemented in this phase.",
"Email sending may be disabled in this environment — copy the invite link instead."
],
"how_to_report_issues": [
"Use the in-product feedback button when available. The form asks for the page, what you expected, and what you saw.",
"Pick a severity: blocker / high / medium / low / polish.",
"Send a short note. Avoid pasting screenshots that contain tokens, secrets, or other tester accounts."
],
"what_not_to_share": [
"Do not share your Microsoft password or any access token.",
"Do not share secrets, API keys, or service-role keys.",
"Do not share other testers' invitation links — invitations are single-use.",
"Do not share screenshots that include other people's email addresses or tenant secrets."
],
"security_reminder": [
"AgentProof never asks for your source code.",
"AgentProof never asks for your Microsoft client secret.",
"The Microsoft connection uses read-only permissions.",
"Disconnecting Microsoft does not delete your prior reports."
],
"screenshot_instructions": [
"Take screenshots with your browser's built-in tool — no third-party uploader.",
"Redact anything that looks like a token, email address you do not own, or secret.",
"Crop screenshots so only the AgentProof UI is visible."
],
"checklist": [
{
"id": "C1",
"label": "Open /beta and see the three paths",
"detail": "Microsoft / Manual / Demo should all be visible and labelled honestly."
},
{
"id": "C2",
"label": "Sign in with an invitation link",
"detail": "The invitation accept page should accept your single-use token."
},
{
"id": "C3",
"label": "Try the demo at /demo",
"detail": "The demo should be isolated. Demo data must not appear in your real workspace."
},
{
"id": "C4",
"label": "Add a non-Microsoft agent",
"detail": "Describe a chatbot / internal agent and confirm the report does not claim it was discovered."
},
{
"id": "C5",
"label": "Generate a readiness report",
"detail": "Confirm the report renders cover, score, evidence, risks, controls, and methodology."
},
{
"id": "C6",
"label": "Use the browser print dialog",
"detail": "Confirm the print-ready report layout is clean. AgentProof does not promise a true PDF export."
},
{
"id": "C7",
"label": "Disconnect Microsoft (if you connected)",
"detail": "Confirm that disconnecting does not delete prior reviews / reports."
},
{
"id": "C8",
"label": "Submit feedback",
"detail": "Use the feedback panel with a real severity to confirm the flow works."
}
]
}