1. Ignis0 Stage-0 Security Gap: Missing SECURITY.md Leaves Critical Capability Threat Model Undefined
The Ignis0 project, a foundational scaffold for a capability-based system, lacks a formal security policy, leaving critical boundaries and disclosure procedures undefined. This gap is particularly acute because the project's single security boundary is the capability dispatch table in `ignis0/src/capability.rs`. Withou...