oscerd opened a new pull request, #6634: URL: https://github.com/apache/camel-k/pull/6634
## What Adds a **threat model** for Apache Camel K under `docs/`: - **`docs/threat-model.md`** — the project's *implicit security contract*: intended use and non-goals, the central trust boundary (RBAC to create/patch a `camel.apache.org` CR == arbitrary code/container execution in the target namespace), adversary model, security properties provided vs. explicitly disclaimed, downstream (operator/deployer) responsibilities, known misuses, recurring non-findings, and a **closed set of triage dispositions** so an inbound report can be routed to exactly one outcome with a section citation. - **`docs/threat-model.yaml`** — a derived sidecar with the triage-relevant facts in structured form, for automated/AI-assisted triage. The prose document is canonical. ## Why Camel K has no `SECURITY.md` and no Camel-K-specific security page; the ASF cross-foundation security index maps it under the Apache Camel umbrella, whose security page defers trust-boundary statements to a Camel "Security Model" page that is not yet published. This document fills that gap and gives maintainers/triagers a stable reference for classifying vulnerability reports, scanner findings, and AI analyses. ## Notes - This is **not** an audit, pentest, CVE list, or build-hygiene checklist — it describes the project as it *is*, the contract between Camel K and the clusters that run it. - Produced with the `threat-model-producer` rubric and **ratified by a maintainer**; every non-trivial claim carries a `(documented)` or `(maintainer, 2026-05-18)` provenance tag (chain of authority retained so a closed report has a defensible citation). - One item is intentionally left **open and non-blocking** — `Q-meta`: where this document should ultimately live and how it should coexist with the umbrella Apache Camel Security Model (`docs/threat-model.md` is not currently published by the Antora site). That is a docs/PMC decision and is called out in §4.14 / §4.1. 🤖 Generated with [Claude Code](https://claude.com/claude-code) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
