Problem
Uploaded files are not scanned for malicious payloads.
Acceptance Criteria
- New uploads are scanned asynchronously.
- Suspicious files are quarantined and blocked from public access.
- Scan status visible via API/UI.
- Failure policy (fail-open/fail-closed) is explicit and configurable.
Test Plan
- Pipeline tests for clean/infected/scan-failure outcomes.
- Access control tests on quarantined files.
Rollout Notes
- Document operational dependencies (scanner service/signatures).
Problem
Uploaded files are not scanned for malicious payloads.
Acceptance Criteria
Test Plan
Rollout Notes