Recommended Practices
Until visibility-aware retrieval is supported, treat External File Ingestion as suitable only for public or broadly approved content.
Recommended controls include:
- Curate a dedicated source folder that contains only approved public or broadly authorized content.
- Require a content owner or data steward to review files before ingestion.
- Label the feature documentation and configuration runbooks with the public-data-only restriction.
- Separate search or RAG experiences by audience if different user groups require different document sets.
- Review search result snippets and metadata during validation, because even read-only results can disclose sensitive information.
- Avoid indexing restricted content until a supported visibility or authorization-filtering design is available for the retrieval path.