<?xml version="1.0" encoding="UTF-8"?><oembed><type>video</type><version>1.0</version><html>&lt;iframe src=&quot;https://www.loom.com/embed/f2b98ab7c7314807b55db70173b7d02c&quot; frameborder=&quot;0&quot; width=&quot;1914&quot; height=&quot;1435&quot; webkitallowfullscreen mozallowfullscreen allowfullscreen&gt;&lt;/iframe&gt;</html><height>1435</height><width>1914</width><provider_name>Loom</provider_name><provider_url>https://www.loom.com</provider_url><thumbnail_height>1435</thumbnail_height><thumbnail_width>1914</thumbnail_width><thumbnail_url>https://cdn.loom.com/sessions/thumbnails/f2b98ab7c7314807b55db70173b7d02c-d5c9210aa24e6e89.gif</thumbnail_url><duration>148.672</duration><title>Panaptico Preflight Twin Simulation for Risky Changes</title><description>This Loom demonstrates Panopticon’s pre-flight twin to rehearse an infrastructure change before it affects live systems. It uses the current checklist and ontology snapshot to run a deterministic simulation engine, predict every resulting resource change, classify risk, and require a cryptographically signed approval for irreversibility. For an M365 email hardening and Datadog SIEM connection project, the highest risk change is removing the root admin principle’s stable tenant rules, which could permanently lock you out. The simulation also shows predicted modifications and removals such as DNS record changes and pipeline topology, with detailed diffs (for example, an anti-impersonation transport rule), plus a blast-radius view of cross-system impacts.</description></oembed>