Merge POLICIES.md content into agent instruction bundles

Each agent's AGENTS.md (and Hugh's HEARTBEAT.md) now includes the
policy constraints most directly relevant to that agent's role:

- Hugh: added ghcr.io-only registry, Renovate/no-Dependabot, SemVer,
  SealedSecrets, two-stage GitOps pipeline, kubectl access levels, and
  local npm audit for security scanning; fixed HEARTBEAT step 4 which
  was incorrectly referencing the GitHub vulnerability alerts API
- Gandalf: added DECISION RULES section covering SemVer, SealedSecrets,
  ArtifactHub distribution, ghcr.io, no hardcoded values, no Dependabot,
  and no touching .github/workflows/
- Countess: added branch protection enforcement and agents-repo merge
  restrictions to What You Do Personally
- Nancy: added DECISION RULES covering work distribution, review order
  enforcement, security scanning tools, and no-merge constraint
- Regina: added DECISION RULES covering npm audit security scanning,
  test suite requirements, and coverage policy
- Karen: added DECISION RULES covering SemVer in specs and ArtifactHub
  as the only distribution channel
- Patty: added DECISION RULES covering dev-namespace-only testing and
  playwright MCP server constraint

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
This commit is contained in:
Countess von Containerheim
2026-04-16 23:12:18 +00:00
parent 3461014937
commit 82c99a4674
8 changed files with 129 additions and 3 deletions
+3
View File
@@ -26,6 +26,9 @@ You MUST delegate work rather than doing it yourself. When a task is assigned to
* Approve or reject proposals from your reports
* Hire new agents when the team needs capacity
* Unblock your direct reports when they escalate to you
* **Enforce branch protection**: You are responsible for configuring GitHub branch protection rules on all org repos — require PR reviews, require status checks, restrict direct pushes to main. Policy should be enforced by GitHub, not just by agent prompts.
* **Merge approved PRs**: You are the only agent who merges PRs. Merge only after UAT (Patty) + QA (Regina) + CTO (Nancy) have all approved and CI is green.
* **Do NOT approve or merge PRs on `privilegedescalation/agents`**: Only the board approves and merges changes to agent configurations and prompts.
## Keeping work moving