fix(security): Docker/infra hardening — CORS, Grafana, .dockerignore, CODEOWNERS

imran-siddique · Copilot · imran-siddique · commit 5a1c0865edef · 2026-04-01T16:26:20.000-07:00
- Replace hardcoded Grafana admin passwords with env var refs in 7
  docker-compose files (CWE-798)
- Replace wildcard CORS allow_origins=[*] with env-driven origins
  in 6 production services (CWE-942)
- Add secret exclusion patterns (.env, *.key, *.pem, *.p12) to root
  and caas .dockerignore files (CWE-532)
- Add security contact, supported versions, and 90-day disclosure
  policy to SECURITY.md (CWE-693)
- Add CODEOWNERS rules for scripts/, Dockerfile, docker-compose*,
  .dockerignore, .clusterfuzzlite/ (CWE-862)

Co-authored-by: Copilot &lt;223556219+Copilot@users.noreply.github.com&gt;
diff --git a/.dockerignore b/.dockerignore
@@ -17,3 +17,13 @@
 .vscode
 coverage.xml
 node_modules
+
+# Security: exclude secrets from build context
+.env
+.env.*
+*.key
+*.pem
+*.p12
+*.crt
+secrets/
+*.token
diff --git a/.github/CODEOWNERS b/.github/CODEOWNERS
@@ -27,6 +27,13 @@
 /packages/*/src/**/identity* @microsoft/agent-governance-toolkit
 /packages/*/src/**/crypto*   @microsoft/agent-governance-toolkit
 
+# Infrastructure & container security — require maintainer review
+/scripts/                    @microsoft/agent-governance-toolkit
+**/Dockerfile                @microsoft/agent-governance-toolkit
+**/docker-compose*           @microsoft/agent-governance-toolkit
+/.dockerignore               @microsoft/agent-governance-toolkit
+/.clusterfuzzlite/           @microsoft/agent-governance-toolkit
+
 # Documentation
 /docs/                       @microsoft/agent-governance-toolkit
 *.md                         @microsoft/agent-governance-toolkit
diff --git a/SECURITY.md b/SECURITY.md
@@ -13,6 +13,31 @@ please review the latest guidance for Microsoft repositories at
 
 <!-- END MICROSOFT SECURITY.MD BLOCK -->
 
+## Security Contact
+
+To report a vulnerability, email **secure@microsoft.com**. You will receive acknowledgement
+within 24 hours and a detailed response within 72 hours indicating next steps.
+
+## Supported Versions
+
+| Version | Supported          |
+|---------|--------------------|
+| 2.1.x   | :white_check_mark: |
+| 2.0.x   | :white_check_mark: |
+| < 2.0   | :x:                |
+
+## Disclosure Policy
+
+We follow a **90-day coordinated disclosure** timeline. After a vulnerability is
+reported and confirmed, we will:
+
+1. Acknowledge receipt within **24 hours**.
+2. Provide a fix or mitigation within **90 days**.
+3. Coordinate public disclosure with the reporter after the fix is released.
+
+If a fix requires more than 90 days, we will negotiate an extended timeline with
+the reporter before any public disclosure.
+
 ## Security Advisories
 
 ### CostGuard Organization Kill Switch Bypass (Fixed in v2.1.0)
diff --git a/packages/agent-hypervisor/examples/docker-compose/app/server.py b/packages/agent-hypervisor/examples/docker-compose/app/server.py
@@ -155,7 +155,7 @@ async def lifespan(app: FastAPI):  # type: ignore[no-untyped-def]
 
 app.add_middleware(
     CORSMiddleware,
-    allow_origins=["*"],
+    allow_origins=os.environ.get("CORS_ALLOWED_ORIGINS", "http://localhost:3000,http://localhost:8080").split(","),
     allow_methods=["*"],
     allow_headers=["*"],
 )
diff --git a/packages/agent-hypervisor/src/hypervisor/api/server.py b/packages/agent-hypervisor/src/hypervisor/api/server.py
@@ -12,6 +12,7 @@
 from __future__ import annotations
 
 import logging
+import os
 from contextlib import asynccontextmanager
 from typing import Any
 
@@ -126,7 +127,7 @@ def create_app() -> FastAPI:
 
     application.add_middleware(
         CORSMiddleware,
-        allow_origins=["*"],
+        allow_origins=os.environ.get("CORS_ALLOWED_ORIGINS", "http://localhost:3000,http://localhost:8080").split(","),
         allow_credentials=True,
         allow_methods=["*"],
         allow_headers=["*"],
diff --git a/packages/agent-mesh/examples/docker-compose/docker-compose.yml b/packages/agent-mesh/examples/docker-compose/docker-compose.yml
@@ -141,7 +141,7 @@ services:
       - "3000:3000"
     environment:
       GF_SECURITY_ADMIN_USER: admin
-      GF_SECURITY_ADMIN_PASSWORD: agentmesh
+      GF_SECURITY_ADMIN_PASSWORD: ${GF_ADMIN_PASSWORD:?Set GF_ADMIN_PASSWORD in .env}
       GF_USERS_ALLOW_SIGN_UP: "false"
       GF_DASHBOARDS_DEFAULT_HOME_DASHBOARD_PATH: /etc/grafana/provisioning/dashboards/trust-metrics.json
     volumes:
diff --git a/packages/agent-os/examples/carbon-auditor/docker-compose.yml b/packages/agent-os/examples/carbon-auditor/docker-compose.yml
@@ -50,7 +50,7 @@ services:
     container_name: carbon-auditor-grafana
     environment:
       - GF_SECURITY_ADMIN_USER=admin
-      - GF_SECURITY_ADMIN_PASSWORD=admin
+      - GF_SECURITY_ADMIN_PASSWORD=${GF_ADMIN_PASSWORD:?Set GF_ADMIN_PASSWORD in .env}
       - GF_USERS_ALLOW_SIGN_UP=false
     volumes:
       - ./observability/grafana/provisioning:/etc/grafana/provisioning:ro
diff --git a/packages/agent-os/examples/defi-sentinel/docker-compose.yml b/packages/agent-os/examples/defi-sentinel/docker-compose.yml
@@ -44,7 +44,7 @@ services:
     container_name: defi-sentinel-grafana
     environment:
       - GF_SECURITY_ADMIN_USER=admin
-      - GF_SECURITY_ADMIN_PASSWORD=admin
+      - GF_SECURITY_ADMIN_PASSWORD=${GF_ADMIN_PASSWORD:?Set GF_ADMIN_PASSWORD in .env}
     volumes:
       - ./observability/grafana/provisioning:/etc/grafana/provisioning:ro
       - ./observability/grafana/dashboards:/var/lib/grafana/dashboards:ro
diff --git a/packages/agent-os/examples/grid-balancing/docker-compose.yml b/packages/agent-os/examples/grid-balancing/docker-compose.yml
@@ -45,7 +45,7 @@ services:
     container_name: grid-grafana
     environment:
       - GF_SECURITY_ADMIN_USER=admin
-      - GF_SECURITY_ADMIN_PASSWORD=admin
+      - GF_SECURITY_ADMIN_PASSWORD=${GF_ADMIN_PASSWORD:?Set GF_ADMIN_PASSWORD in .env}
     volumes:
       - ./observability/grafana/provisioning:/etc/grafana/provisioning:ro
       - ./observability/grafana/dashboards:/var/lib/grafana/dashboards:ro
diff --git a/packages/agent-os/examples/pharma-compliance/docker-compose.yml b/packages/agent-os/examples/pharma-compliance/docker-compose.yml
@@ -44,7 +44,7 @@ services:
     container_name: pharma-grafana
     environment:
       - GF_SECURITY_ADMIN_USER=admin
-      - GF_SECURITY_ADMIN_PASSWORD=admin
+      - GF_SECURITY_ADMIN_PASSWORD=${GF_ADMIN_PASSWORD:?Set GF_ADMIN_PASSWORD in .env}
     volumes:
       - ./observability/grafana/provisioning:/etc/grafana/provisioning:ro
       - ./observability/grafana/dashboards:/var/lib/grafana/dashboards:ro
diff --git a/packages/agent-os/modules/caas/.dockerignore b/packages/agent-os/modules/caas/.dockerignore
@@ -61,3 +61,13 @@ temp/
 # Git
 .git/
 .gitignore
+
+# Security: exclude secrets from build context
+.env
+.env.*
+*.key
+*.pem
+*.p12
+*.crt
+secrets/
+*.token
diff --git a/packages/agent-os/modules/iatp/iatp/main.py b/packages/agent-os/modules/iatp/iatp/main.py
@@ -112,7 +112,7 @@ async def lifespan(app: FastAPI):
 # Add CORS middleware
 app.add_middleware(
     CORSMiddleware,
-    allow_origins=["*"],
+    allow_origins=os.environ.get("CORS_ALLOWED_ORIGINS", "http://localhost:3000,http://localhost:8080").split(","),
     allow_credentials=True,
     allow_methods=["*"],
     allow_headers=["*"],
diff --git a/packages/agent-os/modules/observability/docker-compose.yml b/packages/agent-os/modules/observability/docker-compose.yml
@@ -50,7 +50,7 @@ services:
       - "3000:3000"
     environment:
       - GF_SECURITY_ADMIN_USER=admin
-      - GF_SECURITY_ADMIN_PASSWORD=admin
+      - GF_SECURITY_ADMIN_PASSWORD=${GF_ADMIN_PASSWORD:?Set GF_ADMIN_PASSWORD in .env}
       - GF_USERS_ALLOW_SIGN_UP=false
       - GF_INSTALL_PLUGINS=grafana-piechart-panel
     volumes:
diff --git a/packages/agent-os/services/cloud-board/api/main.py b/packages/agent-os/services/cloud-board/api/main.py
@@ -11,6 +11,7 @@
 from fastapi.middleware.cors import CORSMiddleware
 from contextlib import asynccontextmanager
 import logging
+import os
 
 # Import routes
 from .routes import registry, reputation, escrow, arbiter, compliance
@@ -71,7 +72,7 @@ async def lifespan(app: FastAPI):
 # CORS middleware
 app.add_middleware(
     CORSMiddleware,
-    allow_origins=["*"],  # Configure properly in production
+    allow_origins=os.environ.get("CORS_ALLOWED_ORIGINS", "http://localhost:3000,http://localhost:8080").split(","),
     allow_credentials=True,
     allow_methods=["*"],
     allow_headers=["*"],
diff --git a/packages/agent-os/src/agent_os/server/app.py b/packages/agent-os/src/agent_os/server/app.py
@@ -5,6 +5,7 @@
 from __future__ import annotations
 
 import logging
+import os
 import time
 from datetime import datetime, timezone
 from typing import Any
@@ -96,7 +97,7 @@ def create_app(
     # -- CORS middleware ----------------------------------------------------
     app.add_middleware(
         CORSMiddleware,
-        allow_origins=["*"],
+        allow_origins=os.environ.get("CORS_ALLOWED_ORIGINS", "http://localhost:3000,http://localhost:8080").split(","),
         allow_credentials=True,
         allow_methods=["*"],
         allow_headers=["*"],
diff --git a/packages/agent-sre/examples/docker-compose/docker-compose.yml b/packages/agent-sre/examples/docker-compose/docker-compose.yml
@@ -108,7 +108,7 @@ services:
       - "3000:3000"
     environment:
       - GF_SECURITY_ADMIN_USER=admin
-      - GF_SECURITY_ADMIN_PASSWORD=admin
+      - GF_SECURITY_ADMIN_PASSWORD=${GF_ADMIN_PASSWORD:?Set GF_ADMIN_PASSWORD in .env}
       - GF_DASHBOARDS_DEFAULT_HOME_DASHBOARD_PATH=/var/lib/grafana/dashboards/agent-sre-overview.json
     volumes:
       - ./dashboards:/var/lib/grafana/dashboards:ro
diff --git a/packages/agent-sre/src/agent_sre/api/server.py b/packages/agent-sre/src/agent_sre/api/server.py
@@ -12,6 +12,7 @@
 
 from __future__ import annotations
 
+import os
 import time
 from contextlib import asynccontextmanager
 from typing import TYPE_CHECKING, Any
@@ -124,7 +125,7 @@ def create_app() -> FastAPI:
     )
     application.add_middleware(
         CORSMiddleware,
-        allow_origins=["*"],
+        allow_origins=os.environ.get("CORS_ALLOWED_ORIGINS", "http://localhost:3000,http://localhost:8080").split(","),
         allow_credentials=True,
         allow_methods=["*"],
         allow_headers=["*"],

Original file line number	Diff line number	Diff line change
`@@ -155,7 +155,7 @@ async def lifespan(app: FastAPI): # type: ignore[no-untyped-def]`
`155`	`155`
`156`	`156`	`app.add_middleware(`
`157`	`157`	`CORSMiddleware,`
`158`		`- allow_origins=["*"],`
	`158`	`+ allow_origins=os.environ.get("CORS_ALLOWED_ORIGINS", "http://localhost:3000,http://localhost:8080").split(","),`
`159`	`159`	`allow_methods=["*"],`
`160`	`160`	`allow_headers=["*"],`
`161`	`161`	`)`