Welcome to The Warning Flag. The Warning Flag is a companion newsletter to Conscience of A Whig. As you’ll see, it is quite different, and a passion project of mine and a team of colleagues.
About a month ago, I and some colleagues were discussing whether an Indications and Warning approach could be applied to Election Security issues. Intrigued, I decided to give it a try. My first step was creating a list of events I thought would be likely indicators. One of my colleagues suggested using a Large Language Model to scour news sites for evidence of electoral shenanigans. Having shortly before begun experimenting with Anthropic’s Claude, and with an assist from another colleague who drafted a system prompt, I gave it a whirl. The results were quite impressive. Not only did I get a rich return of data, Claude even formatted the and information for me, after an extended “conversation” regarding preferences.
So for the last month I and my colleagues have been experimenting with a product I’ve dubbed a Daily Sweep; Claude does an initial analytic take on the events they’re identified, then I review the report, assess the sourcing and validity and make further inquiries if indicated. I’ve tried variations on prompts, testing the process to ensure I am not instilling biases, and finding a work pace as well as developing a product that serves peoples’ needs. At least I hope the product serves peoples’ -- your -- needs.
Before going further, I want to stress a key point. The Warning Project process is non-partisan. Nowhere in the system prompt that’s in use is there mention of political parties or political actors, nor will there be. The output will mention political parties and actors should Claude capture the information in the daily sweeps. But in doing so, it’s entirely agnostic as to whether it’s Democratic, Republican, Green, Libertarian, etcetera. The sweep looks for behavior, not people or affiliation.
For this first outing, I am providing Daily Sweep results for June 1st and 2nd. Going forward I will try to post Daily Sweep results on a daily basis. I am also providing two Interim Warning Notifications that address issues brought to my attention that I deemed warranted consideration. They are then incorporated into the next day’s and subsequent sweeps.
I will provide a summary of the days findings as well a PDF files continuing the Daily Sweep Report and a supplement listing the sources used in the report.
If you like this product, please feel free to restack it, share it with your friends, and encourage them to subscribe.
As with The Warning Flag’s companion newsletter, Conscience of A Whig, this Substack Newsletter is free. While I may, in the future, implement a pay option, this content will remain free to any subscriber or any virtual passers-by who want to read it.
Without further ado:
Synthesis and Summary, June 1st, 2026
STREAM 1 — EXECUTIVE ACTION / FEDERAL CONTROL ATTEMPT
EO 14399 (’Ensuring Citizenship Verification and Integrity in Federal Elections,’ March 31, 2026) survived its first major judicial test on May 28 when Judge Nichols declined a preliminary injunction, finding challenges premature. USPS published proposed implementing regulations on May 29 — a 20-page rule requiring state-submitted voter lists, unique ballot barcodes, a Federal Ballot Mail Portal, and USPS authority to reject non-conforming ballot mailings. A 30-day comment period opens with formal Federal Register publication (expected June 2). The Boston federal court is preparing to issue an independent ruling ‘as soon as early June.’ The USPS proposed rule does NOT apply to primaries; the November 3 general election is the primary target.
STREAM 2 — INFRASTRUCTURE DEGRADATION / FEDERAL SUPPORT WITHDRAWAL
CISA’s election security support is at its lowest level since the agency’s 2018 founding. NSA/Cyber Command Director Rudd testified that foreign adversaries are ‘reasonably expected’ to target 2026 elections. CDT’s ‘Fractured Shield’ report (May 28) documents the collapse of federal-state-local cyber information-sharing pipelines. The FY2027 budget would eliminate CISA election security program funding entirely. 75% of local election officials report no additional state/local resources to backfill the federal gap. DOJ is in litigation with ~30 states over voter roll access; FBI seized 600+ boxes of Fulton County 2020 ballots (January 2026) and demanded 2024 Wayne County ballots (April 2026). Election official turnover is accelerating under threat conditions.
STREAM 3 — FOREIGN INTERFERENCE / AI DISINFORMATION ESCALATION
Russia increased its 2026 information operations budget by 54% (+$458M). China and Iran have similarly escalated. The Trump administration has dismantled: the Foreign Malign Influence Center at ODNI, election-security FBI units, and the State Department Global Engagement Center. Military cyber operations remain technically available but political willingness to use them against foreign election interference is assessed as low. Iranian AI-generated influence campaigns active against US election targets as recently as April 2026. AI deepfake proliferation in the 2026 cycle is outpacing regulatory response. OpenAI announced a five-plank election integrity plan May 28.
SYNTHESIS: The June 2 California primary is a live operational test case. It occurs under historically degraded federal support conditions, with active foreign influence operations, accelerating AI deepfake deployment, and a court environment actively litigating the shape of November’s election. The November 3 general election is the primary strategic concern. Today is the canary.
Synthesis and Summary, June 2nd, 2026
STREAM 1 — CALIFORNIA PRIMARY OPERATIONAL STRESS TEST
The June 2 primary is underway under degraded federal support conditions. Two pre-election voter interference incidents in LA County (drop box fire, vote center vandalism, May 31) represent the first confirmed physical election interference incidents of the 2026 cycle. No federal agent presence at polling locations confirmed as of sweep close — SB 73 deterrence appears operative. Pre-election turnout approximately 16% statewide; Republicans returned ballots at higher rate than Democrats.
STREAM 2 — USPS PROPOSED RULE: FEDERAL REGISTER PUBLICATION CONFIRMED
FR Doc. 2026-10968 published June 2, 2026. 30-day public comment period formally open, closing approximately July 2. The rule does not apply to primaries. The November 3 general election is the primary target. With formal publication, the Nichols ripeness barrier to renewed DC litigation is substantially lowered.
STREAM 3 — BOSTON COURT HEARING COMPLETED
Judge Indira Talwani held the June 2 summary judgment hearing in the 24-state AG coalition case. State plaintiffs are assessed to have stronger standing than DC plaintiffs. Ruling expected within days to weeks. A ruling granting relief would be the most significant legal development in this Warning Set’s operational history.
SYNTHESIS: The California primary is functioning. The USPS rule is now in formal public comment. Three litigation tracks are simultaneously active. IWN-001 technical infrastructure findings are now partially corroborated. The most consequential outstanding event is the Talwani ruling. The canary is in the mine — singing, as of sweep close.
STREAM 4 — IWN-001 REVIEW: NDS VOTE.GOV INFRASTRUCTURE / DOJ-NICHOLS DISCREPANCY (PARTIAL CORROBORATION) IWN-001 (31 May 2026, The Drey Dossier / Audrey Henson) was reviewed in full for this sweep. Corroboration search conducted. Evidentiary status is PARTIALLY UPGRADED: the core technical infrastructure findings are now MULTI-OUTLET — CORROBORATED; the DOJ-Nichols discrepancy inference remains SINGLE OUTLET — CORROBORATION PENDING. Technical findings confirmed across two outlets: The Drey Dossier (primary) and AdExchanger (trade publication, June 1, 2026, independently describing the vote.gov and passports.gov findings). No major news organization (Washington Post, Reuters, AP, Politico) has yet independently confirmed the April 10 certificate / DOJ-Nichols discrepancy. The operational core of IWN-001: The National Design Studio, a White House office reporting to Chief of Staff Susie Wiles, has built a working preview of vote.gov — the federal voter registration portal currently owned by the independent, bipartisan Election Assistance Commission — on White House-controlled infrastructure. The certificate was issued April 10, 2026. When EO 14399 was challenged in the Nichols court, DOJ told the judge that the agencies named had “not yet begun preparation” — a representation made after April 10. The discrepancy may reflect agency compartmentalization (DOJ unaware of NDS activity) or a material misrepresentation to the court. NDS infrastructure also includes: ~40 unannounced federal sites behind a single personal Cloudflare account (no federal agency ownership); PostHog behavioral surveillance on all sites; a custom 539-line surveillance script (AutoMonitor) copying all server communications; zero SORNs or PIAs filed (each a statutory violation); and Greg Hogan — the DOGE staffer who retained OPM personnel records access via a specific judicial carve-out — now running Login.gov (150M+ users).