d4666bea7f
The ACL constraint (scope every read/mutation by owner + shares via services/access.py) is a security-correctness invariant that should always be loaded, and it's FabledScribe-specific — so it belongs in Scribe's own contained _INSTRUCTIONS, not the cross-project FabledSword rulebook. The redundant rulebook rule will be retired once this ships to prod. Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>