potiuk opened a new pull request, #6089:
URL: https://github.com/apache/fineract/pull/6089

   **This is a proposal for the PMC to review — please correct, reject, or
   discuss as needed.** Nothing here is a requirement; the maintainer is the
   decision-maker.
   
   This adds an `AGENTS.md` so an automated scan agent can mechanically
   discover the project's security model via the conventional
   `AGENTS.md → SECURITY.md` chain. Fineract's `SECURITY.md` already contains
   a complete threat model; this PR only adds the discoverability pointer to
   it — no model content changes.
   
   Context: the ASF Security team is preparing the project for an automated
   agentic security scan we're piloting. Such scans refuse to run unless the
   model is discoverable by that path (refusing upfront beats wasting PMC
   reviewer cycles on a noise-heavy run against a model the agent never
   found). Discoverability is the one hard gate; everything else is
   suggestion.
   
   Questions / pushback welcome — happy to adjust wording or file placement
   to match project house style.
   


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: [email protected]

For queries about this service, please contact Infrastructure at:
[email protected]

Reply via email to