# ACG Security Assessment (security.azcomputerguru.com)

Single-assessor intake tool: identify the client by Syncro phone number, prefill what we can,
walk Mike through a risk-ordered questionnaire during the consult, capture read-only 365/Google
consent on the spot, and export the audit work-list for the post-meeting automated scan.

- `app/questions.json` — the question framework (sections, fields, sources, importance).
- `app/index.php` — the wizard UI (Cloudflare-Access gated).
- `app/api.php` — Syncro lookup, save/load, consent-link generation, export.
- `app/schema.sql` — MySQL schema.  `DEPLOY.md` — hosting + Cloudflare Access steps.

Stack: PHP + MySQL on the IX cPanel host, behind Cloudflare Access (only mike@azcomputerguru.com).