Status: IN
Every FTL2 module execution passes through three independent security layers: policy enforcement denies unauthorized operations before execution begins, secret bindings auto-inject credentials without code or log exposure, and privilege escalation stages files through safe temp paths with per-user sudoers drop-in files — composing into defense-in-depth at the individual module call level.