Depot 4 findings, fixed
ATTESTED-record replay (critical): a genuinely signed, trusted reproducible-build PASS record for one app could be copy-pasted onto a different app or version and still earn the ATTESTED badge — neither verifier checked the record's own app_id/version against the catalog entry it was attached to. CRL not repo-bound: a per-repo revocation list was authenticated only by signature, never checked against the repo_id being queried — two repos sharing an operator key let an attacker replay one repo's (e.g. empty) CRL as another's, suppressing revocations. Case-sensitive badge-strip: a dishonest repo could dodge the proprietary-app hosting/checksum strip with class:"Proprietary" or foss:"false" (the string). Plus an unsigned-CRL-accepted gap and a same-version CRL tie that could silently un-revoke. All four fixed, with regression tests (test-depot.mjs 17→26, repo-poc crl.test.mjs 16→21, repro-verifier record.test.mjs 9→12).