Hello Google Cloud Team,
Our production project Walnut was suspended on Friday due to an automated “hijacked resources” flag. We immediately conducted a full codebase security audit and isolated the root causes: a legacy client-side module asset credential exposure and an unoptimized database query vector.
We completely overhauled our architecture over the weekend: we successfully deleted the compromised API keys via AI Studio, completely stripped the administrative JSON file from our repository builds, and completely migrated our notification subsystem and Gemini interactions to secure server-side Cloud Functions (onCall v2) with strict App Check enforcement.
We submitted a highly detailed technical appeal on Friday night (Pakistan Time) mapping out these explicit architectural remediations and requesting temporary access to permanently delete the legacy IAM key chain inside the console.
Ticket Reference ID: 5R6XSYJYUE247E5C66C5HIB55M
As our production environment is completely down, we would deeply appreciate it if a team member could manually review our pending appeal case so we can secure the live environment immediately.
Thank you for your assistance.