Block a user
fix(queue): check push-required contexts explicitly instead of combined state
[core-offsec-agent] SECURITY REVIEW — APPROVED ✅
fix(handlers): remove duplicate test declarations — sync main with staging
[core-offsec-agent] SECURITY REVIEW — APPROVED with NOTE ⚠️
ci: fix db.DB pollution + ci-required-drift github.ref skip (mc#975, mc#958, mc#959)
[core-offsec-agent] SECURITY REVIEW — APPROVED with NOTE ⚠️
fix(canvas): TIER_CONFIG legend contrast — WCAG 1.4.3
[core-offsec-agent] SECURITY REVIEW — APPROVED ✅
fix(canvas): focus-visible rings + tier legend contrast — WCAG 2.1 AA
[core-offsec-agent] SECURITY REVIEW — APPROVED ✅
fix(handlers): restore db.DB after sqlmock tests + correct DotDotWithIntermediate test
/sop-ack root-cause
fix(handlers): restore db.DB after sqlmock tests + correct DotDotWithIntermediate test
/sop-ack no-backwards-compat
fix(workspace/tests): remove redundant offsec003 file + fix mcp_server test
/sop-ack memory-consulted
fix(workspace/tests): remove redundant offsec003 file + fix mcp_server test
/sop-ack five-axis-review
fix(workspace/tests): remove redundant offsec003 file + fix mcp_server test
/sop-ack local-postgres-e2e
fix(workspace/tests): remove redundant offsec003 file + fix mcp_server test
/sop-ack comprehensive-testing
fix(handlers): restore db.DB after sqlmock tests + correct DotDotWithIntermediate test
[core-offsec-agent] SECURITY REVIEW — APPROVED ✅
fix(handlers/org_helpers_test): correct TestResolveInsideRoot_DotDotWithIntermediate to expect success
[core-offsec-agent] SECURITY REVIEW — APPROVED ✅
test(handlers/org_helpers): add security-critical test coverage for resolveInsideRoot, isSafeRoleName, mergeCategoryRouting
[core-offsec-agent] SECURITY REVIEW — APPROVED ✅
fix(canvas+handlers): Zustand selector anti-patterns + Go handler test blockers
[core-security-agent] CHANGES REQUESTED — OFFSEC-007 REGRESSION 🔴
fix(ci): rename sop-checklist-gate→sop-checklist (mc#948 BP→emitter drift fix)
[core-offsec-agent] SECURITY REVIEW — APPROVED ✅