Background
Issue #1001 (filed by an external org member, imawais004) appeared on the KB Operations board with no priority set. Investigation confirmed it was added manually by the issue author via the GitHub Projects dropdown — not by automation.
Key Finding
Missing priority = reliable signal of unauthorized addition. All board automation sets at minimum P2 at item creation time. Any item with no priority was added outside of automation.
Resolution
README added ✅
Added a README to project settings making clear it's a personal ops board: "Personal tracking board for @hilram7 — items are added by automation. Do not add issues manually."
Project board does not surface in new issue form ✅
The KB Operations board does not appear in the Projects dropdown when org members create new issues in netwrix/docs. The only way to add an item is by going to the board directly and using "Add items" — a deliberate action, not an accidental one. This significantly reduces the risk of unauthorized additions.
Decision
Automation (scheduled GHA audit or n8n webhook) is not warranted. The README + board visibility behavior together are sufficient mitigation. The residual risk — a deliberate manual add — is low enough that ongoing automation overhead is not justified. Tabled indefinitely.
Background
Issue #1001 (filed by an external org member,
imawais004) appeared on the KB Operations board with no priority set. Investigation confirmed it was added manually by the issue author via the GitHub Projects dropdown — not by automation.Key Finding
Missing priority = reliable signal of unauthorized addition. All board automation sets at minimum P2 at item creation time. Any item with no priority was added outside of automation.
Resolution
README added ✅
Added a README to project settings making clear it's a personal ops board: "Personal tracking board for @hilram7 — items are added by automation. Do not add issues manually."
Project board does not surface in new issue form ✅
The KB Operations board does not appear in the Projects dropdown when org members create new issues in
netwrix/docs. The only way to add an item is by going to the board directly and using "Add items" — a deliberate action, not an accidental one. This significantly reduces the risk of unauthorized additions.Decision
Automation (scheduled GHA audit or n8n webhook) is not warranted. The README + board visibility behavior together are sufficient mitigation. The residual risk — a deliberate manual add — is low enough that ongoing automation overhead is not justified. Tabled indefinitely.