Plan → Run → Verify → Review
Engineering-safe mode keeps every first repo action sandboxed: build the coding-agent blueprint, deploy into a governed target, run review-first, then promote only after engineering-owner acceptance.
An engineering owner should be able to choose a coding-agent workflow, describe the issue, connect repo tools, set approvals, run safely, review evidence, and approve handoff.
Engineering-safe mode keeps every first repo action sandboxed: build the coding-agent blueprint, deploy into a governed target, run review-first, then promote only after engineering-owner acceptance.
This is the external path. Internal runtime/source names stay behind the console.
Refresh the console after the control-plane endpoint is reachable.
Engineering owners define policy and promotion; coding agents own assigned execution, receipts, escalation, and review evidence.
The product must move beyond a dashboard into an enterprise coding-agent workflow system for repo authority, checks, approvals, deployment, observability, evaluation, and optimization.
Engineering owners define goals and policy; coding agents own assigned work, receipts, escalations, and Run Report obligations.
Open one coding agent as a first-class platform principal, then inspect its identity, workspace, permissions, tasks, activity, evaluations, and owner proof report.
Engineering owners set simple policies: ask before repo writes, PR opens, production deploys, secret access, or private data export.
Visible in the proof report before any trusted deployment.
Visible in the proof report before any trusted deployment.
Visible in the proof report before any trusted deployment.
Visible in the proof report before any trusted deployment.
Visible in the proof report before any trusted deployment.