Public static website for Nine Names LLC.
The site is intentionally small: static HTML, local assets, no live translation widget, no analytics, no cookies, no backend, and no public intake form. Public pages are generated from reviewed JSON source so findings, copy, and locale pages can be checked before publishing.
Current public site: https://www.ninenames.com
Fallback preview: https://ninenames-com.pages.dev
Domain status: https://www.ninenames.com currently serves the static site.
The bare apex, https://ninenames.com, is still routed to the provider
WordPress/BusinessIdentity surface, so production is not fully clean until the
apex also serves the same static site or redirects to www.
Deployment freshness is separate from static routing. Treat the public domain as
production-clean only when npm run check:live passes.
Public audit lane: https://www.ninenames.com/audit/
site/contains the generated static website output.localization/contains the modular source used to rebuild the public pages.scripts/check-public-site.mjsruns public-safety and deploy-bundle checks.audit-ledgers/is reserved for future public-safe audit ledgers after release criteria exist..github/ISSUE_TEMPLATE/routes public correction, translation, reproducibility, and site-integrity reports.
npm run build
npm run check
npm run check:comfort
npm run check:live
npm run deploy:preparenpm run build regenerates site/ from the local JSON source. npm run check rebuilds and scans the public export for missing files, unsafe paths, forbidden internal terms, and accidental scripts.
npm run check:comfort runs a local browser smoke test for first-screen actions, mobile overflow, focus landings, and topology exits.
npm run check:live checks deployed routing and freshness. It is expected to fail until the fallback preview, www, and bare apex all serve the current static build and both security.txt routes resolve.
npm run deploy:prepare runs local preflight checks and prints the remaining deployment/routing gate without changing production.
This repository can show the public site source, generated pages, static/no-widget build, findings registry behavior, public-safety checks, issue routing, and visible correction path.
It does not prove or publish raw datasets, private review packets, patient material, controlled source tables, confidential correspondence, credentials, or future scientific audit ledgers. Those require a separate source, safety, status, and translation review before public release.
This repository is public-safe only. It must not contain private strategy, held research assets, inbox exports, credentials, patient material, internal project names, or local review audio.
Security, legal, privacy, credentials, confidential material, patient material, and vulnerabilities do not belong in public GitHub issues. Use the verified mailbox listed on Official Channels.
Deployment steps live in docs/PRODUCTION_DEPLOYMENT_RUNBOOK.md. The shortest live-site handoff is docs/OPERATOR_CUTOVER_CARD.md.
This repository uses a split license. Build scripts and tooling are MIT licensed. Website copy, figures, diagrams, public audit text, brand assets, and generated public pages are licensed under CC BY-NC-ND 4.0 unless a file states otherwise.