Trust posture

Security

SENTINEL is designed around explicit boundaries, approved access, review gates, and traceable action.

Local folders and tools should be explicitly exposed; arbitrary browser filesystem access is not the model.

Input, retrieval, tools, output, code, and media can be governed by risk tiers and approval requirements.

Important actions should leave route, policy, source, and actor records.

Repository artifacts should not include secrets, runtime databases, model weights, caches, or private source material.

Security reports need a clear contact path and expected handling model.

CI, scanners, SBOM, signed artifacts, and runtime proof should gate production claims.

Security is product UXPeople trust what they can inspect and control.

Fail closedUnavailable proof should be labeled unavailable, not papered over.

Bring this lane back into the full SENTINEL workbench.