docs: Update local-mode PR phase behavior [doc-updater]

README.md

@@ -99,10 +99,10 @@ Each pipeline phase has a defined set of permitted operations:
 
 | Phase | Allowed Operations | Exit Requires |
 |-------|-------------------|---------------|
-| **Refine** | `gh issue comment/edit` | Human approval |
-| **Plan** | `gh issue comment/edit`, `egg-contract add-decision` | Human approval |
-| **Implement** | `git push`, `egg-contract add-commit/update-notes` | All checks pass (CI + PR review) |
-| **Merge** | `gh pr edit`, `git push` | Human merge |
+| **Refine** | `gh issue comment/edit`, `git push` (state files), `egg-contract add-decision` | Human approval |
+| **Plan** | `gh issue comment/edit`, `git push` (state files), `egg-contract add-decision` | Human approval |
+| **Implement** | `git push` (code), `egg-contract add-commit/update-notes` | All checks pass (CI + PR review) |
+| **PR** | `gh pr create/edit/comment`, `git push` | Human merge |
 
 ### How Isolation Works
 

docs/architecture/orchestrator.md

@@ -44,7 +44,7 @@ Pipelines can specify an explicit network mode that controls internet access for
 
 - **`public`**: Full internet access (default for issue-mode pipelines)
 - **`private`**: Network lockdown - Anthropic API + private GitHub repos only (enforced by gateway proxy)
-- **`None`** (auto): Falls back based on pipeline mode — `issue` → `public`, `local` → `local` for non-PR phases (switches to `public` for the PR phase to enable push access)
+- **`None`** (auto): Falls back based on pipeline mode — `issue` → `public`, `local` → `local`
 
 **Setting network mode:**
 
@@ -60,7 +60,7 @@ Pipelines can specify an explicit network mode that controls internet access for
 
 **Special case: PR phase in local mode**
 
-Local-mode pipelines normally use `local` gateway mode (isolated network without proxy/DNS lockdown), but the PR phase requires push access. If `network_mode="private"`, the pipeline stays in private mode even during the PR phase (no push allowed). Otherwise, the PR phase temporarily switches to `public` mode to enable `git push` and `gh pr create`.
+Local-mode pipelines use `local` gateway mode throughout all phases, including the PR phase. During the PR phase, the gateway allows PR-specific operations (`gh pr create`, `gh pr edit`) based on phase permissions (`.egg/phase-permissions.json`), while continuing to block other GitHub operations. If `network_mode="private"`, the pipeline stays in private mode even during the PR phase (no push allowed).
 
 ## Per-Pipeline Worktrees
 

docs/guides/local-quickstart.md

@@ -87,24 +87,18 @@ With no arguments, this starts a **local pipeline**. The agent will:
 1. Ask what you want to build
 2. Ask 1-2 clarifying questions
 3. Create a local pipeline in the orchestrator
-4. Run through refine → plan → implement phases entirely locally
+4. Run through refine → plan → implement → PR phases entirely locally
 
-No code is pushed, no PR is created, and no GitHub issues are touched. The gateway enforces this — `git push` and `gh` commands return 403 in local mode.
-
-When the pipeline completes, push and create a PR manually:
-
-```bash
-git push origin egg/my-feature
-gh pr create --title "Add feature" --body "..."
-```
+During refine and plan phases, the gateway restricts pushes to state files and blocks PR operations. During the PR phase, the gateway allows PR creation and editing so the agent can create a draft PR for your review.
 
 **Local pipeline phases:**
 
 | Phase | What happens |
 |-------|-------------|
 | **Refine** | Agent analyzes requirements from your prompt |
 | **Plan** | Agent creates an implementation plan |
-| **Implement** | Agent writes code locally (terminal phase) |
+| **Implement** | Agent writes code locally |
+| **PR** | Agent creates a draft PR (terminal phase) |
 
 ### Option B: Issue pipeline (GitHub-driven)
 
@@ -161,7 +155,7 @@ Here's what the issue pipeline creates and when:
 
 **Nothing is merged automatically.** The gateway enforces merge blocking — only humans can merge PRs via the GitHub UI.
 
-Local pipelines do not interact with GitHub at all — the gateway blocks push and gh operations in local mode.
+Local pipelines create PRs during the PR phase but do not interact with GitHub issues. The gateway blocks most gh operations in local mode, but allows PR operations during the PR phase based on phase permissions.
 
 The pipeline stores its internal state in `.egg-state/` on the feature branch (not on main). This includes the contract JSON, draft documents, and review verdicts.