The GitHub Actions job "prek" on airflow-steward.git/worktree-feat-threat-model has failed. Run started by GitHub user andreahlert (triggered by andreahlert).
Head commit for run: f03ca895fbd7e317debe7803df1d2e708c45e2a5 / André Ahlert <[email protected]> docs(security): add release-blocking threat model Apache Steward automates the ASF 16-step security-issue lifecycle, but until now the framework had no formal threat model: no enumeration of trust boundaries, adversary personas, or per-skill STRIDE rows for the security skill family. PR #81 landed nine prompt-injection findings without a document the next finding could be filed against, and the existing setup-level threat model in `docs/setup/secure-agent-internals.md` covers the agent host but not the eight security skills that compose the lifecycle. This change adds `docs/security/threat-model.md` (660 lines) — five trust boundaries, five adversary personas, a STRIDE matrix per skill family (27 rows), four cross-skill threats, a 29-entry mitigation cross-reference, eleven residual-risk entries with explicit re-eval triggers, and a re-audit cadence that gates every new Mode C skill on adding a STRIDE row. Backlinks added from the security index, process, roles, and how-to-fix guides so any reader of the security docs reaches the threat model in one click. The doc is overhead beyond ASF convention (no observed apache/* repo ships a comparable artefact), justified by the framework's pre-TLP release-blocking posture and the per-adopter blast radius of any security skill bug. Report URL: https://github.com/apache/airflow-steward/actions/runs/25514738807 With regards, GitHub Actions via GitBox --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
