Skip to content

docs(privacy): CEO REVISE — private-first bounty + capability-forward public face#2

Merged
TPEmist merged 1 commit into
mainfrom
feat/privacy-refactor
Apr 15, 2026
Merged

docs(privacy): CEO REVISE — private-first bounty + capability-forward public face#2
TPEmist merged 1 commit into
mainfrom
feat/privacy-refactor

Conversation

@TPEmist
Copy link
Copy Markdown
Member

@TPEmist TPEmist commented Apr 15, 2026

Summary

Repo parity with pop-pay-npm feat/privacy-refactor. Execute CEO REVISE privacy path — public docs go capability-forward, scope-limit / known-gaps / threat detail / methodology move to docs/internal/. Private bounty language restored.

  • SECURITY.md: mirrors TS — minimal capability-forward policy + email-first 72h-SLA bounty block. Historical prelude (Threat Model + Red Team Report tables + Partial/Documented Limitations + Architecture Boundary) moved to docs/internal/py-security-history.md.
  • docs/THREAT_MODEL.md: removed §5 Known Limitations
  • docs/VAULT_THREAT_MODEL.md: removed §5 Known Gaps + §6 "3-tier bounty" ref
  • docs/HALL_OF_FAME.md: deleted
  • docs/internal/: same private-audience artifact set as TS repo + py-security-history.md
  • .gitignore: add temp_trash/

Test plan

  • Grep audit: no \$500 / \$1,000 / \$2,000 / Tier 1/2/3 / 3-tier in public files
  • Grep audit: no capability-backward language in README + public docs/*.md
  • §5 headers gone from both threat-model files
  • SECURITY.md mirrors TS minimal structure (Cython native instead of napi-rs)
  • HALL_OF_FAME.md deleted, no dangling link references
  • CI green

@TPEmist
docs(privacy): CEO REVISE — private-first bounty + capability-forward…
d833390 
… public face

- SECURITY.md: mirror TS — minimal capability-forward policy + email-first 72h-SLA bounty
  block. Prelude (Threat Model + Red Team Report + Partial/Documented Limitations +
  Architecture Boundary) moved to docs/internal/py-security-history.md.
- docs/THREAT_MODEL.md: remove §5 Known Limitations
- docs/VAULT_THREAT_MODEL.md: remove §5 Known Gaps + §6 3-tier ref
- docs/HALL_OF_FAME.md: deleted (reopen publicly when bounty opens)
- docs/internal/: new private-audience artifacts (README, known-limitations,
  vault-gaps, agent-commerce-threat-model, red-team-methodology, py-security-history)
- .gitignore: add temp_trash/ path used by safe-bash policy

Public face = capability-forward. Private audience = bounty researchers after
email to security@pop-pay.ai. Repo parity with pop-pay-npm feat/privacy-refactor.
@TPEmist TPEmist merged commit 17f3bee into main Apr 15, 2026
1 check passed
@TPEmist TPEmist deleted the feat/privacy-refactor branch April 15, 2026 07:20
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@TPEmist