potiuk opened a new pull request, #11353: URL: https://github.com/apache/nifi/pull/11353
**This is a proposal for the NiFi PMC to review — please correct, reject, or discuss as needed.** This wires the conventional `AGENTS.md -> SECURITY.md -> security model` discoverability chain so an automated security-scan agent can mechanically locate NiFi's existing published security model (https://nifi.apache.org/documentation/security/#security-model). - Adds `AGENTS.md` with a Security section pointing at `SECURITY.md`. - Adds a "Threat Model" pointer in `SECURITY.md` linking the published security-model page. No security-model *content* is added or changed — this is purely the discoverability pointer to the model NiFi already maintains. Context: the ASF Security team is preparing the project for an automated agentic security scan we're piloting; such scans refuse to run unless the model is reachable via this chain. Wording/placement tweaks welcome. Generated-by: Claude Opus 4.8 (1M context) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
