# CODEOWNERS for gtv.
#
# Every PR must be reviewed by at least one code owner. Security-sensitive
# areas require a review from the @security group. Update this file when
# the team or module boundaries change — stale ownership is worse than none.
#
# Syntax: https://docs.github.com/en/repositories/managing-your-repositories-settings-and-features/customizing-your-repository/about-code-owners

# Default owner: whoever merges is accountable for the whole tree.
*                                       @groundtruth/maintainers

# --- Security-sensitive code paths ---
# Anything that touches signing keys, Rekor/TSA anchoring, trust, revocation,
# audit logging, or authentication requires security sign-off.
/src/gtv/anchor/                        @groundtruth/security @groundtruth/maintainers
/src/gtv/auth/                          @groundtruth/security @groundtruth/maintainers
/src/gtv/federation/                    @groundtruth/security @groundtruth/maintainers
/src/gtv/revocation/                    @groundtruth/security @groundtruth/maintainers
/src/gtv/audit/                         @groundtruth/security @groundtruth/maintainers
/src/gtv/cli/admin_keys.py              @groundtruth/security @groundtruth/maintainers
/src/gtv/cli/federation.py              @groundtruth/security @groundtruth/maintainers
/src/gtv/cli/rekor_consistency.py       @groundtruth/security @groundtruth/maintainers
/src/gtv/cli/revoke.py                  @groundtruth/security @groundtruth/maintainers

# --- CI / supply chain ---
/.github/                               @groundtruth/security @groundtruth/maintainers
/Dockerfile                             @groundtruth/security @groundtruth/maintainers
/pyproject.toml                         @groundtruth/maintainers
/SECURITY.md                            @groundtruth/security
/CODEOWNERS                             @groundtruth/security @groundtruth/maintainers

# --- Docs ---
/docs/                                  @groundtruth/maintainers
/README.md                              @groundtruth/maintainers
