{
  "coverageStartTimestamp": "2026-05-01T16:42:18Z",
  "entryCount": 6,
  "errors": [],
  "findingState": {
    "accessReview": "open_follow_up",
    "businessOutcome": "configured_group_mismatch_after_expiry",
    "continuity": "pass",
    "notes": [
      "The audit chain verifies continuity over the retained sample events.",
      "The control finding is still open because expectedState=not_member while observedState=member.",
      "Configured-group evidence is meaningful only if the group controls the real app, license, role, or resource."
    ]
  },
  "hashAlgorithm": "SHA-256",
  "headHash": "16f2e726b728c0f4d79a6b841b69537ebdefda338021bd484e0fdf24afdd99ab",
  "headMac": "a47fc4ff9ad87740354adc7d44592a7c56c3c11713fc3b01548ed1462b0b6512",
  "keyId": "v1",
  "macAlgorithm": "HMAC-SHA-256",
  "retainedEventCaveat": "Continuity checks cover retained chained audit events only. Pruned or legacy events outside chain coverage must be disclosed separately.",
  "sampleNotice": "Sample - synthetic data",
  "schemaVersion": "ai-clearance-audit-chain-verification-summary.sample.v1",
  "verified": true,
  "verifiedAt": "2026-06-10T02:30:00Z"
}
