From aae7c0702875eaf50437e3b163367b122bf967e3 Mon Sep 17 00:00:00 2001 From: CoderDeltaLAN Date: Sat, 20 Jun 2026 02:32:05 +0100 Subject: [PATCH] docs: sync threat model current main commands --- CHANGELOG.md | 1 + docs/THREAT-MODEL.md | 7 ++++++- 2 files changed, 7 insertions(+), 1 deletion(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index 573c709..42e40a1 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -23,6 +23,7 @@ This project has a published GitHub Release line, but no stable support or API g ### Changed +- Synchronized the threat model with current-main post-v0.3.0 `dedupe` and `conflicts` command boundaries. - Synced the README repository layout with the current workflows, evidence documents, scripts, package modules, and test files. - Synced README wording with current main truth for post-v0.3.0 `dedupe` and `conflicts`, published v0.3.0/PyPI boundaries, and functional evidence traceability. - Hardened the local post-release audit script to verify package metadata, version parity, source CLI smoke behavior, workflow action inventory, workflow trigger and permission posture, PyPI Trusted Publishing boundaries, Dependabot configuration, forbidden local artifacts, and public-claim guardrails. diff --git a/docs/THREAT-MODEL.md b/docs/THREAT-MODEL.md index afe9c24..5208a73 100644 --- a/docs/THREAT-MODEL.md +++ b/docs/THREAT-MODEL.md @@ -1,6 +1,6 @@ # Threat Model -This document defines the threat model for agent-rules-kit. It was last reviewed for the published v0.3.0 release line and the current post-v0.3.0 main state, including the v0.3.0 doctor, budget, and explain command surface. +This document defines the threat model for agent-rules-kit. It was last reviewed for the published v0.3.0 release line and the current post-v0.3.0 main state, including the published v0.3.0 doctor, budget, and explain command surface and the current-main post-v0.3.0 dedupe and conflicts read-only command additions. It is intentionally narrow. agent-rules-kit is a local CLI for diagnosing AI agent instruction files. It is not a security scanner, malware detector, CI/CD auditor, sandbox, secret manager, or autonomous remediation agent. @@ -14,10 +14,14 @@ In scope for the current release line and current main state: - read-only doctor repository diagnosis summaries; - read-only budget size and context-pressure approximation output; - read-only explain output for local governance rule IDs; +- read-only dedupe duplicate instruction-line detection on current main as a post-v0.3.0 addition; +- read-only conflicts contradictory-guidance detection on current main as a post-v0.3.0 addition; - explicit init planning; - explicit init write behavior for baseline AGENTS.md creation or replacement with backup; - secret-like value redaction in findings and output. +`dedupe` and `conflicts` are current-main post-v0.3.0 additions. They must not be represented as published PyPI package behavior until a later release is cut, published, and verified. + Out of scope: - network access; @@ -159,6 +163,7 @@ Before release, verify: - backups are created before replacing existing AGENTS.md; - no runtime network or LLM dependency was introduced; - no repository command execution was introduced; +- post-v0.3.0 `dedupe` and `conflicts` command boundaries remain read-only if they are included in the next release scope; - secret-like examples in tests and docs are fake or redacted; - README does not claim security guarantees; - CI is green for the release SHA.