diff --git a/conductor/workflow.md b/conductor/workflow.md
index 614566db..dcb882a0 100644
--- a/conductor/workflow.md
+++ b/conductor/workflow.md
@@ -383,7 +383,7 @@ The Tier 2 autonomous mode is the unattended execution mode for tracks. See `doc
 | `git checkout*` (any form) | `permission.bash` deny rule | n/a | `post-checkout` hook logs the checkout |
 | `git restore*` (any form) | `permission.bash` deny rule | n/a | n/a |
 | `git reset*` (any form) | `permission.bash` deny rule | n/a | n/a |
-| File access outside Tier 2 clone + app-data dir | `permission.read`/`write` path allowlist | Windows restricted token + ACLs | n/a |
+| File access outside Tier 2 clone (AppData, Temp, Documents, etc. all denied at the OpenCode `*` level + targeted `*AppData\\*` deny) | `permission.read`/`write` path allowlist | Windows restricted token + ACLs | n/a |
 
 ### Review and merge workflow (user-side)