Add security scanning and hardening controls

Author: SecAI-Hub

.gitattributes

@@ -1,10 +1,32 @@
+* text=auto eol=lf
+
 *.sh text eol=lf
+*.bash text eol=lf
+*.py text eol=lf
+Makefile text eol=lf
+*.md text eol=lf
+*.txt text eol=lf
+*.lock text eol=lf
+*.json text eol=lf
+*.yaml text eol=lf
+*.yml text eol=lf
+*.toml text eol=lf
+*.yar text eol=lf
+*.cff text eol=lf
+*.conf text eol=lf
+*.nft text eol=lf
+*.desktop text eol=lf
 *.service text eol=lf
 *.timer text eol=lf
 *.socket text eol=lf
 *.target text eol=lf
 *.path text eol=lf
 *.mount text eol=lf
+*.ps1 text eol=crlf
+Containerfile text eol=lf
+Containerfile.* text eol=lf
+Dockerfile text eol=lf
+Dockerfile.* text eol=lf
 files/system/usr/lib/systemd/system/* text eol=lf
 files/system/usr/libexec/secure-ai/* text eol=lf
 files/system/etc/greenboot/check/required.d/* text eol=lf

.github/ISSUE_TEMPLATE/bug_report.yml

@@ -0,0 +1,36 @@
+name: Bug report
+description: Report a reproducible SecAI OS defect
+title: "[Bug]: "
+labels: ["bug"]
+body:
+  - type: textarea
+    id: summary
+    attributes:
+      label: Summary
+      description: What failed, and what did you expect instead?
+    validations:
+      required: true
+  - type: textarea
+    id: steps
+    attributes:
+      label: Reproduction Steps
+      description: Include exact commands, UI actions, or service requests.
+      placeholder: |
+        1. ...
+        2. ...
+        3. ...
+    validations:
+      required: true
+  - type: textarea
+    id: environment
+    attributes:
+      label: Environment
+      description: Hardware, install path, image digest, release tag, and relevant service versions.
+    validations:
+      required: true
+  - type: textarea
+    id: logs
+    attributes:
+      label: Logs or Evidence
+      description: Paste relevant logs, health output, or screenshots. Redact secrets.
+      render: shell

.github/ISSUE_TEMPLATE/security_hardening.yml

@@ -0,0 +1,35 @@
+name: Security hardening
+description: Propose a control, invariant, or assurance improvement
+title: "[Hardening]: "
+labels: ["security", "hardening"]
+body:
+  - type: textarea
+    id: control
+    attributes:
+      label: Control or Invariant
+      description: What security property should be added, tightened, or verified?
+    validations:
+      required: true
+  - type: textarea
+    id: threat
+    attributes:
+      label: Threat Scenario
+      description: What attack, misconfiguration, or regression does this address?
+    validations:
+      required: true
+  - type: textarea
+    id: implementation
+    attributes:
+      label: Suggested Implementation
+      description: Mention affected services, docs, tests, and release checks if known.
+  - type: dropdown
+    id: assurance
+    attributes:
+      label: Assurance Impact
+      options:
+        - Blocks release readiness
+        - Improves production hardening
+        - Improves documentation or auditability
+        - Product enhancement
+    validations:
+      required: true

.github/PULL_REQUEST_TEMPLATE.md

@@ -0,0 +1,15 @@
+## Summary
+
+-
+
+## Verification
+
+- [ ] Go tests updated or not needed
+- [ ] Python tests updated or not needed
+- [ ] Docs updated or not needed
+- [ ] Security/release impact reviewed
+
+## Security Notes
+
+Describe any changes to policy, signing, sandboxing, network access, model
+promotion, key handling, or release artifacts.

.github/branch-protection.md

@@ -4,7 +4,7 @@ Required branch protection settings for SecAI OS release infrastructure.
 Configure these in GitHub Settings > Branches > Add branch protection rule,
 or use the setup script below.
 
-Last updated: 2026-03-14
+Last updated: 2026-04-28
 
 ---
 
@@ -24,18 +24,19 @@ Last updated: 2026-03-14
 
 ### Required status checks for `release/*`
 
-All 7 of these must pass before a PR can merge into a release branch:
+All 8 of these must pass before a PR can merge into a release branch:
 
-1. **Go Build & Test** (`go-build-and-test`) — Builds and tests all 9 Go services with race detector
-2. **Python Test & Lint** (`python-test`) — Ruff, bandit, mypy, unit/integration tests, adversarial + M5 acceptance
-3. **Security Regression Tests** (`security-regression`) — Adversarial tests (Python + Go MCP/policy/incident-recorder)
-4. **Dependency Vulnerability Audit** (`dependency-audit`) — govulncheck + pip-audit with waiver mechanism
-5. **Test Count Drift Check** (`test-count-check`) — Ensures test counts don't drop below documented floor
-6. **Documentation Validation** (`docs-validation`) — Broken links, required docs, milestone count consistency, test references
-7. **Release Branch Hardened Gate** (`release-gate`) — Zero-tolerance bandit, CVE-ID govulncheck waivers, M5 acceptance re-run
+1. **Go Build & Test** (`go-build-and-test`) -- Builds and tests all 9 Go services with race detector
+2. **Python Test & Lint** (`python-test`) -- Ruff, bandit, mypy, unit/integration tests, adversarial + M5 acceptance
+3. **Security Regression Tests** (`security-regression`) -- Adversarial tests (Python + Go MCP/policy/incident-recorder)
+4. **Hadolint & Semgrep** (`appsec-lint`) -- Container linting plus repo-owned application security rules
+5. **Dependency Vulnerability Audit** (`dependency-audit`) -- govulncheck + pip-audit with waiver mechanism
+6. **Test Count Drift Check** (`test-count-check`) -- Ensures test counts do not drop below documented floor
+7. **Documentation Validation** (`docs-validation`) -- Broken links, required docs, milestone count consistency, test references
+8. **Release Branch Hardened Gate** (`release-gate`) -- Zero-tolerance bandit, CVE-ID govulncheck waivers, M5 acceptance re-run
 
 The `release-gate` job has `needs:` on all of the above, so configuring it as the sole required check is sufficient.
-However, listing all 7 makes failure diagnosis easier in the GitHub UI.
+However, listing all 8 makes failure diagnosis easier in the GitHub UI.
 
 ---
 
@@ -71,7 +72,7 @@ patterns (`release/*`) requires using rulesets. The script below uses the
 branch protection API for `stable` (exact name) and documents the UI steps
 for wildcard patterns.
 
-### For `stable` branch (exact match — API supported)
+### For `stable` branch (exact match -- API supported)
 
 ```bash
 #!/usr/bin/env bash
@@ -90,6 +91,7 @@ gh api -X PUT "repos/${OWNER}/${REPO}/branches/stable/protection" \
       {"context": "Go Build & Test"},
       {"context": "Python Test & Lint"},
       {"context": "Security Regression Tests"},
+      {"context": "Hadolint & Semgrep"},
       {"context": "Dependency Vulnerability Audit"},
       {"context": "Test Count Drift Check"},
       {"context": "Documentation Validation"},
@@ -109,10 +111,10 @@ EOF
 echo "OK: Branch protection set for stable"
 ```
 
-### For `release/*` branches (wildcard — use GitHub UI)
+### For `release/*` branches (wildcard -- use GitHub UI)
 
 1. Go to **Settings > Branches > Add branch protection rule**
 2. Branch name pattern: `release/*`
 3. Enable all settings listed in the table above
-4. Under "Require status checks to pass", add all 7 check names listed above
+4. Under "Require status checks to pass", add all 8 check names listed above
 5. Save changes

.github/container-pin-waivers.json

@@ -0,0 +1,12 @@
+{
+  "_comment": "Temporary waivers for FROM refs that cannot be represented as a single static digest because the build arg selects multiple upstream variants. Each waiver must expire and must be reviewed before renewal.",
+  "dynamic_from": [
+    {
+      "path": "services/inference-worker/Containerfile",
+      "image_ref": "ghcr.io/ggml-org/llama.cpp:${IMAGE_TAG}",
+      "reason": "IMAGE_TAG selects CPU/CUDA/ROCm/Vulkan/Intel llama.cpp variants. Production builds must pass the resolved digest through release metadata until this is split into per-variant pinned stages.",
+      "reviewer": "sec_ai",
+      "expires": "2026-06-30"
+    }
+  ]
+}

.github/dependabot.yml

@@ -4,3 +4,149 @@ updates:
     directory: "/"
     schedule:
       interval: "daily"
+    groups:
+      github-actions:
+        patterns: ["*"]
+
+  - package-ecosystem: "pip"
+    directory: "/"
+    schedule:
+      interval: "weekly"
+    groups:
+      python-ci:
+        patterns: ["*"]
+
+  - package-ecosystem: "pip"
+    directory: "/services/agent"
+    schedule:
+      interval: "weekly"
+
+  - package-ecosystem: "pip"
+    directory: "/services/quarantine"
+    schedule:
+      interval: "weekly"
+
+  - package-ecosystem: "pip"
+    directory: "/services/search-mediator"
+    schedule:
+      interval: "weekly"
+
+  - package-ecosystem: "pip"
+    directory: "/services/ui"
+    schedule:
+      interval: "weekly"
+
+  - package-ecosystem: "gomod"
+    directory: "/services/airlock"
+    schedule:
+      interval: "weekly"
+
+  - package-ecosystem: "gomod"
+    directory: "/services/gpu-integrity-watch"
+    schedule:
+      interval: "weekly"
+
+  - package-ecosystem: "gomod"
+    directory: "/services/incident-recorder"
+    schedule:
+      interval: "weekly"
+
+  - package-ecosystem: "gomod"
+    directory: "/services/integrity-monitor"
+    schedule:
+      interval: "weekly"
+
+  - package-ecosystem: "gomod"
+    directory: "/services/mcp-firewall"
+    schedule:
+      interval: "weekly"
+
+  - package-ecosystem: "gomod"
+    directory: "/services/policy-engine"
+    schedule:
+      interval: "weekly"
+
+  - package-ecosystem: "gomod"
+    directory: "/services/registry"
+    schedule:
+      interval: "weekly"
+
+  - package-ecosystem: "gomod"
+    directory: "/services/runtime-attestor"
+    schedule:
+      interval: "weekly"
+
+  - package-ecosystem: "gomod"
+    directory: "/services/tool-firewall"
+    schedule:
+      interval: "weekly"
+
+  - package-ecosystem: "docker"
+    directory: "/services/agent"
+    schedule:
+      interval: "weekly"
+
+  - package-ecosystem: "docker"
+    directory: "/services/airlock"
+    schedule:
+      interval: "weekly"
+
+  - package-ecosystem: "docker"
+    directory: "/services/diffusion-worker"
+    schedule:
+      interval: "weekly"
+
+  - package-ecosystem: "docker"
+    directory: "/services/gpu-integrity-watch"
+    schedule:
+      interval: "weekly"
+
+  - package-ecosystem: "docker"
+    directory: "/services/inference-worker"
+    schedule:
+      interval: "weekly"
+
+  - package-ecosystem: "docker"
+    directory: "/services/mcp-firewall"
+    schedule:
+      interval: "weekly"
+
+  - package-ecosystem: "docker"
+    directory: "/services/policy-engine"
+    schedule:
+      interval: "weekly"
+
+  - package-ecosystem: "docker"
+    directory: "/services/quarantine"
+    schedule:
+      interval: "weekly"
+
+  - package-ecosystem: "docker"
+    directory: "/services/registry"
+    schedule:
+      interval: "weekly"
+
+  - package-ecosystem: "docker"
+    directory: "/services/search-mediator"
+    schedule:
+      interval: "weekly"
+
+  - package-ecosystem: "docker"
+    directory: "/services/tool-firewall"
+    schedule:
+      interval: "weekly"
+
+  - package-ecosystem: "docker"
+    directory: "/services/ui"
+    schedule:
+      interval: "weekly"
+
+  - package-ecosystem: "docker"
+    directory: "/deploy/sandbox/searxng"
+    schedule:
+      interval: "weekly"
+
+  - package-ecosystem: "docker"
+    directory: "/deploy/sandbox/tor"
+    schedule:
+      interval: "weekly"