Prox OS Internal Docs
TrustSecurityAI

Contributor Permission Model

permission-enforcement changes.

Access Levels

LevelExamplePermission posture
Public readerUser, community memberReads public docs and issues.
Community contributorDocs, themes, templates, issuesWorks through PRs, no direct production access.
Scoped maintainerOfficial app owner, docs maintainerOwns specific paths with review rules.
Core maintainerShell, API, registry, infra ownerCan approve high-impact changes.
Ops ownerFounder / Ops StewardReviews access, secrets, deployment, and succession readiness.

Required Practices

  • Use PR review for contributor work.
  • Use CODEOWNERS when ownership becomes stable.
  • Keep production credentials outside repo.
  • Require explicit approval for auth, billing, database, deployment, and permission-enforcement changes.

On this page