From 2b86bbef19d7f995b9bb4dc7ad2e0f6fb98f8579 Mon Sep 17 00:00:00 2001 From: gavrielc Date: Sat, 4 Jul 2026 19:45:04 +0300 Subject: [PATCH] Apply suggestion from @gavrielc --- docs/SECURITY.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/SECURITY.md b/docs/SECURITY.md index e3767a734..dc1604ab1 100644 --- a/docs/SECURITY.md +++ b/docs/SECURITY.md @@ -2,7 +2,7 @@ ## Trust Model -Privilege in v2 is **user-level**, persisted in the `user_roles` table (owner / +Privilege is **user-level**, persisted in the `user_roles` table (owner / admin, global or scoped to an agent group) plus `agent_group_members` (the unprivileged access gate). There is no "main vs non-main" group distinction and no `NANOCLAW_ADMIN_USER_IDS` env var — roles live in the central DB only.