Repo access only; no client distribution without TL approval
client-confidential
Contains client PII, itineraries, vulnerabilities
Named-recipient delivery only; no third-party tools without approval; redact for vendors
public
Cleared for external release
TL sign-off recorded in the cell
Rules
Personnel are referenced by initials in all repo artifacts, never full names.
Secrets never enter the repo: configuration names an environment variable
(token_env: TELEGRAM_TOKEN style indirection); values live in local .env
files which are gitignored.
Client identifying details live in region packages and engagement artifacts
marked client-confidential, not in reusable cells.
Duty-to-warn and imminent-danger caveats in deliverable skeletons are
mandatory verbatim blocks; never remove them.