**This is a proposal for the PMC to review — please correct, reject, or discuss as needed.** Nothing here is a requirement; the maintainer is the decision-maker.
This adds an `AGENTS.md` so an automated scan agent can mechanically discover the project's security model via the conventional `AGENTS.md → SECURITY.md` chain. This repository already has a `SECURITY.md` pointing at `docs/security-model.md`; this PR only adds the entry-point file that points at it. No existing content is changed. Context: the ASF Security team is preparing this project for an automated agentic security scan we're piloting. Such scans refuse to run unless the model is mechanically discoverable by that path (refusing upfront beats wasting maintainer review cycles on a noise-heavy run against an unknown model). Discoverability is the one hard gate; the model content itself is untouched by this PR. Questions / pushback welcome — happy to adjust the wording or move the section if the project has a house style. You can view, comment on, or merge this pull request online at: https://github.com/apache/teaclave-sgx-sdk/pull/471 -- Commit Summary -- * Add AGENTS.md with security-model link for agent discoverability -- File Changes -- A AGENTS.md (13) -- Patch Links -- https://github.com/apache/teaclave-sgx-sdk/pull/471.patch https://github.com/apache/teaclave-sgx-sdk/pull/471.diff -- Reply to this email directly or view it on GitHub: https://github.com/apache/teaclave-sgx-sdk/pull/471 You are receiving this because you are subscribed to this thread. Message ID: <apache/teaclave-sgx-sdk/pull/[email protected]>
