The inner provider permission layer for Gemini: configure approval modes and seatbelt/sandbox profiles (and read-only Plan Mode where used) to match the strict-deny posture and explicit prohibitions enforced for Claude (#18).
Spec §3.2 (Gemini permission/lockdown column), §7.4 (provider permission layer — inner), §7.5 (explicit prohibitions).
Acceptance criteria
Depends on: #72
The inner provider permission layer for Gemini: configure approval modes and seatbelt/sandbox profiles (and read-only Plan Mode where used) to match the strict-deny posture and explicit prohibitions enforced for Claude (#18).
Spec §3.2 (Gemini permission/lockdown column), §7.4 (provider permission layer — inner), §7.5 (explicit prohibitions).
Acceptance criteria
run_session— not opt-in.Depends on: #72