> ## Documentation Index
> Fetch the complete documentation index at: https://risi.q-uestionable.ai/llms.txt
> Use this file to discover all available pages before exploring further.

# Responsible Use

> Authorization, synthetic-data, and disclosure requirements for RISI research

## Authorized research only

Use RISI only with systems you own, control, or are explicitly authorized to test. Ordinary API or
account access does not by itself authorize security testing.

## Synthetic scenarios

Primary research uses synthetic identities, facts, policies, obligations, and canary secrets. Do
not test real user memories or third-party accounts.

## No live consequential actions

Decision outputs must remain simulated. Do not connect experiments to live medical, financial,
deployment, identity, access-control, or other consequential systems.

## Isolation

Bounded text-only experiments belong on dedicated lab systems. Higher-risk tool or MCP expansions
require isolated disposable targets and separately reviewed network access.

## Untrusted models and approval evidence

Treat every model, including an orchestrating model, as an untrusted caller. Model-generated
manifests and tool calls cannot grant authority. Approval JSON binds provenance to a manifest hash
but is not authentication; stronger deployments must protect or sign it outside the agent's
writable context.

The harness cannot replace host-level egress enforcement. Use container, firewall, or VLAN controls
for any future network-capable profile.

## Responsible disclosure

Reproduce implementation-specific defects from a clean state, prepare a minimal private reproducer
and mitigation proposal, notify the maintainer privately, and coordinate publication responsibly.

<Warning>
  Do not publish private research traces, credentials, internal endpoints, or unnecessary
  weaponizable detail. Retain research evidence in its approved private location.
</Warning>
