assign_control_to_components
Scope a security control to one or more components so coding agents see it only in their repos, or clear assignments to make it visible everywhere.
Instructions
Replace a control's component scope.
Components are the canonical code-binding for controls. A control scoped to one or more components is visible to coding agents working in those repos (matched via Component.repo_url + Component.path); an unscoped control is visible everywhere.
Use this tool when:
Wiring a previously unscoped control to the component(s) that implement it (so coding agents see the control on their repo).
Adding a second component to a cross-cutting control (e.g., "all microservices enforce JWT validation").
Correcting a wrong component assignment.
Input Schema
| Name | Required | Description | Default |
|---|---|---|---|
| model_id | Yes | ID of the threat model. | |
| control_id | Yes | ID of the control to scope (e.g., "CTRL-03"). | |
| change_reason | Yes | Why this scope is appropriate (min 10 chars). Captured in the control's version history. | |
| component_ids | Yes | Comma-separated component IDs (e.g., "CMP1,CMP2"). Empty string = unscoped (visible to every coding agent). Validated against the model: every supplied ID must exist. | |
| server_version | Yes |
Output Schema
| Name | Required | Description | Default |
|---|---|---|---|
No arguments | |||