diff --git a/workplans/NET-WP-0017-it-security-readiness-for-user-onboarding.md b/workplans/NET-WP-0017-it-security-readiness-for-user-onboarding.md
index b1343ff..d7d1dd8 100644
--- a/workplans/NET-WP-0017-it-security-readiness-for-user-onboarding.md
+++ b/workplans/NET-WP-0017-it-security-readiness-for-user-onboarding.md
@@ -257,6 +257,15 @@ shows the signed custody roster gate as done without printing holder contact
 details. T02 remains open for emergency seal/unseal drill metadata, the Audit
 Core retention/risk decision, and the real restore/emergency evidence files.
 
+**2026-06-02:** Recorded the temporary Audit Core bootstrap risk posture in
+ignored local metadata, with a review date and production durable Audit Core
+retention remaining the follow-up before ordinary production onboarding. The
+T02 validator now shows the Audit Core posture gate as done. Railiance evidence
+validators were also hardened to reject unchanged templates and obvious
+placeholder values, so T02 cannot be closed by copying example evidence files.
+Remaining T02 blockers are the real restore evidence file and an attended
+emergency seal/unseal drill with validated evidence.
+
 ### T03 - Close Trial Taint And Retire Bootstrap Admin Paths
 
 ```task