cruise-control

The cruise-control capability represents a coherent, auditable automation orchestrator for a multi-gear StackShift workflow. It is not inherently malicious and fits its stated unattended-run use. Primary concerns are operational risk (unreviewed, large-scale changes) and governance (access control, artifact handling, and secure integration points). With proper safeguards—access controls, input validation, robust state management, and clear rollback paths—the feature remains a valuable automation tool rather than a security threat.