Security Threat Model Objective Establish the repository-scoped threat model at the path defined in . If this already exists, stop here. If a threat model or clearly authoritative security scan guidance is provided or already exists, persist it unchanged to this file, then stop here. can be that authoritative source when it is sufficiently specific about the repository's product surfaces, trust boundaries, attacker-controlled inputs, assumptions, or security scan guidance to serve as the threat model. If no threat model is provided, generate a repository-scoped threat model to be used in futu…