phase-contract-workflow

No explicit malware/backdoor behavior (e.g., hidden networking or credential theft) is evident in this Ruby module. However, it contains a high-impact supply-chain execution gadget: it runs arbitrary shell commands taken from YAML-defined phase checks via `Open3.popen2e('sh','-lc', command, ...)` and can then write ledgers and (optionally) commit/push changes via git. Use of this tool is therefore only safe when plan/manifest.yaml (and the phase check command definitions) are fully trusted and protected; otherwise an attacker can achieve arbitrary code execution with significant persistence/blast radius.