What this architecture is designed to survive.

Named actor (state, corporate, or individual) files for defamation over a published claim.

Structural refusal to name perpetrators, survivors, or serving personnel. Every contested claim resolves to a Tier-A anchor; the site cites the anchor, not the actor. The Mirror-Publish Protocol means TLTE transmits nothing — accredited intermediaries do. UK CIC structure with publication-only purpose; UK Defamation Act 2013 §4 (public-interest publication) protection.

Aggregated case-pattern reporting from Tier-A sources may still attract suit. Mitigation: pre-publication legal review on any new aggregating page.

Diaspora-political or state-aligned actor joins, gains role, and tries to redirect the project.

Twenty-One Roots constitution binds every member equally including the founder; no founder override; no permanent leaders; recall protocol at /recall-dry-run; two-Archon authorisation required for every operational change; Stewardship Register publicly logs every role-change.

First-era founder dependency is real (single person can be coerced or compromised). Mitigation: Continuity Protocol succession spec; Graduation Gate 4 (two-Archon) is the live circuit-breaker.

A sympathetic state offers funding, recognition, or platform access conditional on editorial shifts.

No donations, no charitable status, no grants. /research/reflexivity declares funding. Any future funding line must appear there, dated, BEFORE any related work ships. The refusal of donations is itself the structural defence.

Indirect benefit (visibility, MP statements, citations) is unavoidable and not refused. Disclosed at /reception.

Velicham, the observational AI, generates a plausible but unsupported claim that travels.

Velicham retrieves from the bundled markdown archive and the citation registry; refuses naming/counts/intake; audited against a public eval suite (46+ cases, growing) at /velicham/evals with public runner endpoint. Registered citation glosses remain the citation-lock layer for load-bearing claims.

LLM jailbreaks and prompt-injection from corpus content remain a live risk. Mitigation: red-team cases in the eval suite are first-class, not bonus.

Adversary state observes the site, network logs, or contributors to identify and harm individuals.

No survivor intake on the public site. No HUMINT. No op-sec advice (always routes to Access Now / Citizen Lab / CPJ / RSF). No geolocation publication beyond base-footprint resolution. Civic Protection Doctrine cyber layer cites CISA/NCSC/CSE 2024 baselines; Citizen Lab #151 + No Escape inform the threat picture.

Visitors to the site can be surveilled by the observer; the project cannot defend its readers' devices. Mitigation: Tor-friendly, no third-party trackers, no auth cookies on public surfaces.

Existing diaspora-political organisations attempt to brand TLTE as aligned with or hostile to one faction.

/what-this-is-not declares TLTE is not a continuation of any armed movement, not a party, not a diaspora-front organisation. Multi-community framing is structural (Eastern Muslim, Up-country, Northern, multi-faith clergy, international accountability are always paired). Refusal to participate in faction politics is itself the response.

Misrepresentation in third-party media is inevitable. Mitigation: stable site text + Continuity Changelog + anti-fraud verifier mean misquotes can be checked against the canonical record.

Future commercial pressure (platform fees, gateway costs, infrastructure scaling) forces editorial compromise.

No commercial product. No premium tier. Min (மின்) credit is non-tradable and never bought with cash (Twenty-One Roots #10). Infrastructure is portable (Root #20 — no vendor lock-in). Move-cost to a new stack is bounded by design.

AI Gateway dependency is real. Mitigation: the corpus + citation registry are fully exportable as plain text + structured JSON.

Adversary uses repeated legal threats to drain resources, even without a meritorious case.

UK Defamation Act 2013 §4 public-interest defence. UK Terrorism Act 2000 §12 academic-discussion protection (cited explicitly at /on-what-authority). All claims resolve to Tier-A anchors — TLTE is the route, not the source. Strict refusal to host content that would create primary-source liability (no intake, no naming, no counts, no verdicts).

Cost of even meritorious defence is real. Mitigation: pre-publication legal review at gate 3 of the Graduation Gates; mirror-publish to accredited intermediaries who carry their own legal capacity.

Third party extracts the corpus or methodology and presents it as their own work.

Permanent tlte-cite: identifiers; machine-readable /api/citations.json; CITATION.cff at repo root; DOI-pinned preprint; SHA-256 hashes in Continuity Changelog. Attribution is enforced by infrastructure, not by request.

Ideas (the three protocols) cannot be copyrighted. Mitigation: priority is established by the DOI-pinned preprint date.

A reader extracts a paragraph out of context and claims the site supports a position it does not.

Two-Layer rule is non-removable: Now (operational truth) and Becoming (civilisational target) appear on the same page. Refusal blocks ('what this is not') on every desk. On-record failure conditions at /on-what-authority. Append-only Continuity Changelog with anti-fraud verifier means the original text is always recoverable.

Bad-faith reading is unstoppable. Mitigation: make good-faith reading easy and verifiable.