Add security-model discoverability pointer to the project-wide CloudStack threat model#97
Conversation
Adds a draft project-level security threat-model document (draft-THREAT-MODEL.md) at repo root, improving discoverability for automated security scanners running against this repository. The file follows the rubric format used by several other ASF projects piloting security-model discoverability. The "draft-" prefix signals this is a proposal for the PMC to review, correct, or reject — not a finalised maintainer-blessed model. Every claim carries a provenance tag (documented / inferred / maintainer) so reviewers can see where each claim originates; §14 collects open questions for the maintainers. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
Codecov Report✅ All modified and coverable lines are covered by tests. Additional details and impacted files@@ Coverage Diff @@
## main #97 +/- ##
=======================================
Coverage 50.05% 50.05%
=======================================
Files 4 4
Lines 975 975
=======================================
Hits 488 488
Misses 473 473
Partials 14 14 ☔ View full report in Codecov by Sentry. 🚀 New features to boost your workflow:
|
|
There's a lot of details in the draft that needs a better set of eyes, so assigning @DaanHoogland @vishesh92 who're also PMC leads on the work. |
…po copy Drop the standalone draft-THREAT-MODEL.md and wire the discoverability chain AGENTS.md -> SECURITY.md -> the project-wide model in apache/cloudstack (apache/cloudstack#13293), so scanners find one canonical model and this repo inherits it rather than duplicating it. Generated-by: Claude Code
|
Thanks @yadvr — routing to @DaanHoogland and @vishesh92 makes sense. These are just discoverability pointers to the project-wide model in #13293, so they'll naturally follow once that lands. Standing by for the leads' review — happy to reshape the pointers to match whatever #13293 settles on. No rush from our side. |
There was a problem hiding this comment.
Pull request overview
Adds repository-level security discoverability documentation so automated tooling and contributors can find the Apache CloudStack project-wide security model from this repo.
Changes:
- Introduces
SECURITY.mdwith ASF security reporting guidance and a pointer to the project-wide threat model. - Introduces
AGENTS.mdto direct automated agents/scanners toSECURITY.mdfor the security model chain.
Reviewed changes
Copilot reviewed 2 out of 2 changed files in this pull request and generated 1 comment.
| File | Description |
|---|---|
| SECURITY.md | Adds a security policy plus a pointer to the CloudStack-wide threat model. |
| AGENTS.md | Adds an agent/scanner entry point that links to SECURITY.md. |
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
| model: <https://github.com/apache/cloudstack/blob/main/THREAT_MODEL.md>. | ||
|
|
||
| (That link resolves once the project-wide model lands on `apache/cloudstack`'s | ||
| `main` branch — see apache/cloudstack#13293. A thin `cloudstack-cloudstack-kubernetes-provider`-specific | ||
| addendum can be added here later if this component needs one.) |
|
Merging for now. We can revisit later if any changes are required here. |
Summary
Apache CloudStack's security model is project-wide, not per-repository. This PR replaces the earlier standalone
draft-THREAT-MODEL.mdin this repo with the standard discoverability chain so automated scanners find the one canonical model:AGENTS.md→SECURITY.md→ the project-wide model athttps://github.com/apache/cloudstack/blob/main/THREAT_MODEL.mdThe model lives in
apache/cloudstack(see apache/cloudstack#13293); this repo inherits it via the pointer above rather than duplicating it — per the PMC's direction on #13293 to converge on the parent model first. The link resolves once that model lands onmain. A thin repo-specific addendum can be added here later if this component needs one.AGENTS.mdcarries a one-line SPDX header (it is read by agents on every session);SECURITY.mdcarries the full ASF header.