Merge branch 'main' into feature/agentmesh/trust-report_CLI_command

Author: imran-siddique

.cspell-repo-terms.txt

@@ -0,0 +1,21 @@
+AgentOS
+AgentMesh
+AgentGovernance
+CMVK
+IATP
+Moltbook
+OpenClaw
+OpenAI
+LangChain
+LangGraph
+LlamaIndex
+CrewAI
+Dify
+SemanticKernel
+Microsoft
+GitHub
+workflow
+workflows
+markdown
+spellcheck
+spellchecking

.cspell.json

@@ -0,0 +1,44 @@
+{
+  "version": "0.2",
+  "language": "en",
+  "useGitignore": true,
+  "dictionaries": ["repo-terms"],
+  "dictionaryDefinitions": [
+    {
+      "name": "repo-terms",
+      "path": "./.cspell-repo-terms.txt",
+      "addWords": true
+    }
+  ],
+  "words": [
+    "GitHub",
+    "Markdown",
+    "README",
+    "TypeScript",
+    "JavaScript",
+    "Python",
+    "PyPI",
+    "NuGet",
+    "OpenSSF",
+    "CodeQL",
+    "CORS",
+    "CSP",
+    "CLI",
+    "CI",
+    "CD",
+    "PR",
+    "MCP",
+    "A2A"
+  ],
+  "ignorePaths": [
+    "**/node_modules/**",
+    "**/dist/**",
+    "**/build/**",
+    "**/.venv/**",
+    "**/.git/**",
+    "**/*.png",
+    "**/*.svg",
+    "**/*.json",
+    "**/*.lock"
+  ]
+}

.dockerignore

@@ -0,0 +1,19 @@
+.git
+.github
+.venv
+**/.venv
+**/__pycache__
+**/.pytest_cache
+**/.mypy_cache
+**/.ruff_cache
+**/.coverage
+**/htmlcov
+**/build
+**/dist
+**/*.egg-info
+**/node_modules
+.DS_Store
+.idea
+.vscode
+coverage.xml
+node_modules

.github/CODEOWNERS

@@ -6,27 +6,27 @@
 # See: docs/CONTRIBUTING.md and .github/workflows/require-maintainer-approval.yml
 
 # Default owners for everything in the repo
-* @imran-siddique
+* @microsoft/agent-governance-toolkit
 
 # Package-specific ownership
-/packages/agent-os/          @imran-siddique
-/packages/agent-mesh/        @imran-siddique
-/packages/agent-hypervisor/  @imran-siddique
-/packages/agent-sre/         @imran-siddique
-/packages/agent-compliance/  @imran-siddique
-/packages/agent-marketplace/ @imran-siddique
-/packages/agent-runtime/     @imran-siddique
-/packages/agentmesh-integrations/ @imran-siddique
+/packages/agent-os/          @microsoft/agent-governance-toolkit
+/packages/agent-mesh/        @microsoft/agent-governance-toolkit
+/packages/agent-hypervisor/  @microsoft/agent-governance-toolkit
+/packages/agent-sre/         @microsoft/agent-governance-toolkit
+/packages/agent-compliance/  @microsoft/agent-governance-toolkit
+/packages/agent-marketplace/ @microsoft/agent-governance-toolkit
+/packages/agent-runtime/     @microsoft/agent-governance-toolkit
+/packages/agentmesh-integrations/ @microsoft/agent-governance-toolkit
 
 # Security-sensitive paths — require maintainer review, no exceptions
-/.github/                    @imran-siddique
-/.github/workflows/          @imran-siddique
-/.github/actions/            @imran-siddique
-/packages/*/src/**/sandbox*  @imran-siddique
-/packages/*/src/**/trust*    @imran-siddique
-/packages/*/src/**/identity* @imran-siddique
-/packages/*/src/**/crypto*   @imran-siddique
+/.github/                    @microsoft/agent-governance-toolkit
+/.github/workflows/          @microsoft/agent-governance-toolkit
+/.github/actions/            @microsoft/agent-governance-toolkit
+/packages/*/src/**/sandbox*  @microsoft/agent-governance-toolkit
+/packages/*/src/**/trust*    @microsoft/agent-governance-toolkit
+/packages/*/src/**/identity* @microsoft/agent-governance-toolkit
+/packages/*/src/**/crypto*   @microsoft/agent-governance-toolkit
 
 # Documentation
-/docs/                       @imran-siddique
-*.md                         @imran-siddique
+/docs/                       @microsoft/agent-governance-toolkit
+*.md                         @microsoft/agent-governance-toolkit

.github/copilot-instructions.md

@@ -7,7 +7,7 @@ NEVER merge a PR without thorough code review. CI passing is NOT sufficient.
 Before approving or merging ANY PR, verify ALL of the following:
 
 1. **Read the actual diff** — don't rely on PR description alone
-2. **Dependency confusion scan** — check every `pip install`, `npm install` command in docs/code for unregistered package names. The registered names are: `agent-os-kernel`, `agentmesh-platform`, `agent-hypervisor`, `agent-runtime`, `agent-sre`, `agent-governance-toolkit`, `agent-lightning`, `agent-marketplace`
+2. **Dependency confusion scan** — check every `pip install`, `npm install` command in docs/code for unregistered package names. The registered names are: `agent-os-kernel`, `agentmesh-platform`, `agent-hypervisor`, `agentmesh-runtime`, `agent-sre`, `agent-governance-toolkit`, `agentmesh-lightning`, `agentmesh-marketplace`
 3. **New Python modules** — verify `__init__.py` exists in any new package directory
 4. **Dependencies declared** — any new `import` must have the package in `pyproject.toml` dependencies (not just transitive)
 5. **No hardcoded secrets** — no API keys, tokens, passwords, connection strings in code or docs
@@ -29,8 +29,8 @@ Before approving or merging ANY PR, verify ALL of the following:
 - Use conventional commits (feat:, fix:, docs:, etc.)
 - Run tests before committing
 - MIT license headers on all source files
-- Author: Microsoft Corporation, email: agt@microsoft.com
-- All packages prefixed with "Community Edition" in descriptions
+- Author: Microsoft Corporation, email: agentgovtoolkit@microsoft.com
+- All packages prefixed with "Public Preview" in descriptions
 
 ## Publishing
 

.github/workflows/ai-breaking-change-detector.yml

@@ -5,7 +5,7 @@
 name: AI Breaking Change Detector
 # SECURITY: Uses pull_request_target for write access to post PR comments.
 # All checkouts pin to BASE ref (never HEAD) to prevent RCE via modified
-# composite actions in fork PRs. See MSRC Case 111178.
+# composite actions in fork PRs. See workflow security audit.
 
 on:
   pull_request_target:
@@ -19,6 +19,7 @@ permissions:
   pull-requests: write
   models: read
 
+# SECURITY: pull_request_target runs in BASE context. Never checkout PR head ref.
 jobs:
   detect-breaking-changes:
     name: API Compatibility Check
@@ -35,7 +36,7 @@ jobs:
       - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
         with:
           # SECURITY: pull_request_target defaults to base branch checkout (safe).
-          # Do NOT add ref: head.sha — see MSRC Case 111178.
+          # SECURITY: base-only checkout required for pull_request_target context.
           persist-credentials: false
           fetch-depth: 0
 

.github/workflows/ai-code-review.yml

@@ -5,7 +5,7 @@
 name: AI Code Review
 # SECURITY: Uses pull_request_target for write access to post PR comments.
 # All checkouts pin to BASE ref (never HEAD) to prevent RCE via modified
-# composite actions in fork PRs. See MSRC Case 111178.
+# composite actions in fork PRs. See workflow security audit.
 
 on:
   pull_request_target:
@@ -17,6 +17,7 @@ permissions:
   pull-requests: write
   models: read
 
+# SECURITY: pull_request_target runs in BASE context. Never checkout PR head ref.
 jobs:
   ai-review:
     name: Deep AI Code Review
@@ -35,7 +36,7 @@ jobs:
       - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
         with:
           # SECURITY: pull_request_target defaults to base branch checkout (safe).
-          # Do NOT add ref: head.sha — see MSRC Case 111178.
+          # SECURITY: base-only checkout required for pull_request_target context.
           persist-credentials: false
           fetch-depth: 1
 

.github/workflows/ai-contributor-guide.yml

@@ -6,7 +6,7 @@
 name: AI Contributor Guide
 # SECURITY: Uses pull_request_target for write access to post PR comments.
 # All checkouts pin to BASE ref (never HEAD) to prevent RCE via modified
-# composite actions in fork PRs. See MSRC Case 111178.
+# composite actions in fork PRs. See workflow security audit.
 
 on:
   issues:
@@ -20,6 +20,7 @@ permissions:
   issues: write
   models: read
 
+# SECURITY: pull_request_target runs in BASE context. Never checkout PR head ref.
 jobs:
   guide-issue:
     name: Guide First-Time Issue Author
@@ -37,7 +38,7 @@ jobs:
       - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
         with:
           # SECURITY: pull_request_target defaults to base branch checkout (safe).
-          # Do NOT add ref: head.sha — see MSRC Case 111178.
+          # SECURITY: base-only checkout required for pull_request_target context.
           persist-credentials: false
 
       - name: Guide contributor on issue
@@ -62,9 +63,9 @@ jobs:
                - agent-hypervisor: Execution sandboxing, resource isolation
                - agent-sre: Reliability, chaos testing, SLOs
                - agent-compliance: Compliance frameworks, audit logging
-               - agent-marketplace: Agent registry
-               - agent-lightning: High-performance inference
-               - agent-runtime: Runtime execution environment
+               - agentmesh-marketplace: Agent registry
+               - agentmesh-lightning: High-performance inference
+               - agentmesh-runtime: Runtime execution environment
             3. **Point to relevant code** — suggest specific directories to look at
             4. **Link to resources**:
                - [CONTRIBUTING.md](../blob/main/CONTRIBUTING.md)
@@ -95,7 +96,7 @@ jobs:
       - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
         with:
           # SECURITY: pull_request_target defaults to base branch checkout (safe).
-          # Do NOT add ref: head.sha — see MSRC Case 111178.
+          # SECURITY: base-only checkout required for pull_request_target context.
           persist-credentials: false
 
       - name: Guide PR author

.github/workflows/ai-docs-sync.yml

@@ -5,7 +5,7 @@
 name: AI Docs Sync Check
 # SECURITY: Uses pull_request_target for write access to post PR comments.
 # All checkouts pin to BASE ref (never HEAD) to prevent RCE via modified
-# composite actions in fork PRs. See MSRC Case 111178.
+# composite actions in fork PRs. See workflow security audit.
 
 on:
   pull_request_target:
@@ -19,6 +19,7 @@ permissions:
   pull-requests: write
   models: read
 
+# SECURITY: pull_request_target runs in BASE context. Never checkout PR head ref.
 jobs:
   docs-freshness:
     name: Documentation Freshness Check
@@ -35,7 +36,7 @@ jobs:
       - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
         with:
           # SECURITY: pull_request_target defaults to base branch checkout (safe).
-          # Do NOT add ref: head.sha — see MSRC Case 111178.
+          # SECURITY: base-only checkout required for pull_request_target context.
           persist-credentials: false
           fetch-depth: 1
 

.github/workflows/ai-release-notes.yml

@@ -78,7 +78,7 @@ jobs:
           custom-instructions: |
             You are generating release notes for microsoft/agent-governance-toolkit.
             This is a monorepo with packages: agent-os, agent-mesh, agent-hypervisor,
-            agent-sre, agent-compliance, agent-marketplace, agent-lightning, agent-runtime.
+            agent-sre, agent-compliance, agentmesh-marketplace, agentmesh-lightning, agentmesh-runtime.
 
             Categorize changes by:
             1. Package affected (based on file paths in the PR)