Risk Register

:::info Source Sourced from services/media-service/SERVICE_RISK_REGISTER.md in the documentation repo. :::

ID	Risk	Sev	Impact	Mitigation	Owner
R-ME-01	CSAM upload	S1	Legal; regulatory	Content-safety scanner; immediate quarantine; NCMEC reporting	Media + Legal + Security
R-ME-02	Malware upload	S1	Platform compromise	ClamAV; sandboxed processing; quarantine	Media + Security
R-ME-03	Cross-tenant asset access via signed URL	S1	Data leak	Per-tenant prefix + caller scope in signature	Media + Security
R-ME-04	AI image bias / offensive output	S2	Trust / regulatory	Post-gen moderation; bias eval; refusal UX	Media + AI
R-ME-05	Storage cost runaway	S3	Margin	Per-tenant quotas; lifecycle to Glacier; dedup by SHA	Media + Finance
R-ME-06	Deepfake abuse	S2	Harm + reputation	Provenance + watermarking (M5); abuse reporting	Media + Trust & Safety
R-ME-07	GDPR erasure incomplete (bundle-referenced)	S2	Regulator	Anonymize ownership; retain for bundle	Media + Compliance
R-ME-08	Caption quality poor for low-resource languages	S3	Accessibility gap	Human review; HITL; language-specific models	Media + AI + a11y
R-ME-09	Transcode failure on unusual input	S3	Author UX	Multi-profile fallback; error messaging	Media
R-ME-10	CDN-cached stale revoked content	S2	Access post-revoke	Purge on revoke; short TTL; origin check	Media + SRE
R-ME-11	AI budget exhaustion on bulk ops	S3	Blocked workflow	Budget UI; per-tenant caps; admin override	Media + AI + Billing
R-ME-12	Scanner FP on legitimate content	S3	False quarantine	Admin review queue; override with audit	Media + Trust & Safety
R-ME-13	HIPAA media with restricted providers	S1	BAA breach	Tenant-tagged routing to allowlisted AI providers	Media + AI + Compliance
R-ME-14	Large-file upload abuse (storage flood)	S2	Cost / availability	Per-tenant size cap; upload rate limits	Media + Security
R-ME-15	Watermark removal	S3	Content piracy	Invisible watermarks (M5+); legal DMCA	Media + Security + Legal