Active policy · secops-policy@v3.2
5 agents · 1 working · 4 idle
Only the Developer Agent has T1 auto-merge, and only for playbooks with ≥10 prior successes and severity ≤ medium. Critical-severity work always routes to human approval.
Production agents · 5
Scanner Agent
T2
Ingests findings from connected sources, deduplicates, normalizes to internal schema
v3.4.1 · deployed 12d ago · runs nightly + on-demand
Idle
Permissions
4 allow · 1 gated · 1 deny
read.fortify.findingsallow
write.internal.findingsgated
write.git.codedeny
next run: 22:00 UTC
Triage Agent
T3
Classifies findings, picks playbooks, estimates effort, flags too-complex
v2.8.0 · deployed 5d ago · invoked per finding
Idle
Permissions
3 allow · 1 gated
avg latency: 4.2s
Developer Agent
T1
Implements fixes from playbooks, writes regression tests, opens MRs
v4.2.3 · deployed 18h ago · invoked per ticket
Working
Working on
SEC-1747 ·
spring-csrf@1.2 · 18m elapsed
62%
Permissions
3 allow · 2 gated · 2 deny
merge.main · sev≤med + uses≥10gated
transition.jira.mergedgated
write.auth-service.*deny
write.db.migrationsdeny
Recent activity
5 events · today
Started fix on SEC-1747 with spring-csrf@1.218m ago
Auto-merged SEC-1742 · path traversal fix2h ago
Opened MR !8442 for SEC-17452h ago
Token quota warning — 87k of 100k weekly budget used5h ago
Auto-merged SEC-1738 · SHA-1 → SHA-256yesterday
sandbox: java-17-v3
Reviewer Agent
T2
Reviews agent-produced MRs, validates diffs against playbook expectations, casts vote
v3.1.7 · deployed 3d ago · invoked per MR
Ready
Permissions
3 allow · 2 gated
read.merge-request.diffallow
post.merge-request.approveallow
post.merge-request.changesallow
route.alice.critical-cryptogated
block.merge · scope-violationgated
last review: 11m ago · SEC-1745
Orchestrator
T2
Routes work between agents, runs daily standup, manages handoffs and queue priority
v2.0.5 · deployed 9d ago · invoked on event + daily
Idle
Permissions
5 allow · 1 gated
next standup: tomorrow 09:00