Skip to content

DevSecOps: move sandboxing/isolation guidance out of AI Security (#398) -- verified#411

Open
frameworks-volunteer wants to merge 13 commits intosecurity-alliance:developfrom
frameworks-volunteer:issue-398-devsecops-sandboxing-isolation
Open

DevSecOps: move sandboxing/isolation guidance out of AI Security (#398) -- verified#411
frameworks-volunteer wants to merge 13 commits intosecurity-alliance:developfrom
frameworks-volunteer:issue-398-devsecops-sandboxing-isolation

Conversation

@frameworks-volunteer
Copy link

@frameworks-volunteer frameworks-volunteer commented Mar 9, 2026

Implements #398 by relocating general sandboxing + isolation guidance from the AI Security section into DevSecOps, where it belongs for CI/CD, build systems, automation, and developer tooling.

What this PR does

• Moves and renames sandboxing/isolation documentation pages into docs/pages/devsecops/
• Removes AI-specific framing so the guidance reads as broadly applicable DevSecOps best practice
• Updates navigation/indexes/tag generation so the new pages are discoverable in DevSecOps
• Cleans up old/moved stubs in the AI Security section to avoid duplicated guidance

Why

Sandboxing and isolation are core DevSecOps controls (CI runners, PR builds, preview environments, automation with side effects). Keeping the material under AI Security made it harder to find and implicitly scoped it too narrowly.

Notes for reviewers

• The intent is content relocation + normalization, not changing the security stance.
• Pages remain focused on practical controls: blast-radius reduction, least privilege, egress controls, and operational footguns.

Closes #398.

@frameworks-volunteer frameworks-volunteer changed the title DevSecOps: move sandboxing/isolation guidance out of AI Security (#398) DevSecOps: move sandboxing/isolation guidance out of AI Security (#398) -- verified Mar 9, 2026
@github-actions
Copy link

github-actions bot commented Mar 9, 2026
edited
Loading

built with Refined Cloudflare Pages Action

⚡ Cloudflare Pages Deployment

Name Status Preview Last Commit
frameworks ✅ Ready (View Log) Visit Preview 42f4f25

@frameworks-volunteer frameworks-volunteer force-pushed the issue-398-devsecops-sandboxing-isolation branch from 5b806f5 to 1789d23 Compare March 10, 2026 11:20
@frameworks-volunteer
Move sandboxing/isolation guidance from AI Security to DevSecOps (issue
8ffc114 
security-alliance#398)

(cherry picked from commit 6f4e19c)
@frameworks-volunteer
Rename sandboxing pages and remove AI-specific wording (issue securit…
3be69bc 
…y-alliance#398)

(cherry picked from commit 6526afb)
@frameworks-volunteer
Remove moved stub pages after DevSecOps consolidation (issue security…
f746038 
…-alliance#398)

(cherry picked from commit 0c0fe91)
@frameworks-volunteer
Expand DevSecOps sandboxing/isolation guidance with concrete controls…
af0fcae 
… and references (issue security-alliance#398)

(cherry picked from commit f56ae55)
@frameworks-volunteer
docs(devsecops): add links to key DevSecOps pages
33460e8 
(cherry picked from commit 0be5d0c)
@frameworks-volunteer
Reorganize DevSecOps isolation/sandboxing navigation
a769ba2 
(cherry picked from commit 6a4aecf)
@frameworks-volunteer
docs(devsecops): group isolation guides under dedicated section
9ec7e36
@frameworks-volunteer
docs(devsecops): add key takeaway callouts to overview and isolation …
8eab78e 
…pages
@frameworks-volunteer
docs(ai-security): add brief DevSecOps isolation reference and remove…
2035cf9 
… canonical wording
@frameworks-volunteer frameworks-volunteer force-pushed the issue-398-devsecops-sandboxing-isolation branch from b9553a4 to 2035cf9 Compare March 10, 2026 13:23
@security-alliance security-alliance deleted a comment from github-actions bot Mar 10, 2026
@security-alliance security-alliance deleted a comment from github-actions bot Mar 10, 2026
@security-alliance security-alliance deleted a comment from github-actions bot Mar 10, 2026
@security-alliance security-alliance deleted a comment from github-actions bot Mar 10, 2026
@security-alliance security-alliance deleted a comment from github-actions bot Mar 10, 2026
@security-alliance security-alliance deleted a comment from github-actions bot Mar 10, 2026
@security-alliance security-alliance deleted a comment from github-actions bot Mar 10, 2026
@mattaereal mattaereal requested a review from scode2277 March 10, 2026 15:56
@mattaereal mattaereal self-requested a review March 10, 2026 15:56
@mattaereal mattaereal self-assigned this Mar 10, 2026
@mattaereal mattaereal added content:add This issue or PR adds content or suggests to content:update This issue or PR updates content or suggests to labels Mar 10, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@scode2277 scode2277 Awaiting requested review from scode2277

@mattaereal mattaereal Awaiting requested review from mattaereal

Assignees

@mattaereal mattaereal

Labels

content:add This issue or PR adds content or suggests to content:update This issue or PR updates content or suggests to

Projects

Security Frameworks
Status: No status

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Move AI-Security's Sandboxing explicit content to DevSecOps

2 participants

@frameworks-volunteer @mattaereal