Goal Turn ACL and permission governance into a task-driven workflow so users can ask for business outcomes while the skill handles: - CLI command selection and argument shaping - capability checks and safety guards - write confirmation and readback evidence - risk-oriented explanation for high-impact changes Scope - This skill is CLI-first for reads and writes. - Tasks are grouped into five domains: - role - global role mode - permission - user - risk assessment - Every write task follows . - is treated as a global system policy, not a per-role field. Non-Goals - Do not bypass CLI by calling…