This project is maintained by CloudDefense.AI and community maintainers.
- Maintainer: CloudDefense.AI
- Contact: [email protected]
- Minor changes: lazy consensus (approve unless objections within 7 days)
- Security posture changes: require explicit maintainer approval
- Breaking changes: require an RFC issue + 2 maintainer approvals
- Tag releases as needed (this is primarily a template repo)
- Document changes in CHANGELOG.md
- SECURITY.md defines reporting and response expectations
- Scorecard workflow must remain enabled
- Changes that reduce guardrails are treated as security regressions