Why
Proofpoint Nexus is the moat: live lures from billions of messages. We need a defensible feed.
Scope
- New table column on
email_templates: source (internal | partner | itw_feed), last_seen_itw_at, itw_volume_band.
- Ingest pipeline from one or more open / partner feeds (PhishTank, abuse.ch, OpenPhish) with sanitisation + safety review.
- Surface "fresh in the wild" templates first in the picker.
Acceptance
- New templates appear within 24 hours of feed publication.
- All ingested templates are reviewed by a human before going live (manual approval).
Why
Proofpoint Nexus is the moat: live lures from billions of messages. We need a defensible feed.
Scope
email_templates:source(internal | partner | itw_feed),last_seen_itw_at,itw_volume_band.Acceptance