Update AGENTS.md files across multiple modules to standardize task status update instructions and introduce a new document for Secret Leak Detection operations.

- Modified task status update instructions in AGENTS.md files to refer to corresponding sprint files as `/docs/implplan/SPRINT_*.md` instead of `docs/implplan/SPRINTS.md`.
- Added a comprehensive document for Secret Leak Detection operations detailing scope, prerequisites, rule bundle lifecycle, enabling the analyzer, policy patterns, observability, troubleshooting, and references.

src/Scanner/StellaOps.Scanner.Analyzers.Lang.Php/AGENTS.md

@@ -19,7 +19,7 @@ Build deterministic PHP analyzers that normalise composer-based projects, map de
 - Composer/autoload references noted in sprint tasks.
 
 ## Working Agreement
-1. **Status updates**: reflect `DOING`/`DONE` in both `docs/implplan/SPRINTS.md` and local `TASKS.md` before/after any change.
+1. **Status updates**: reflect `DOING`/`DONE` in both sprint file `/docs/implplan/SPRINT_*.md` and local `TASKS.md` before/after any change.
 2. **Deterministic inputs**: avoid hitting remote composer registries; rely on local vendor/lockfiles; record config provenance.
 3. **Surface compliance**: route env, cache, and secret lookups through shared Surface libraries; run Surface.Validation before analysis.
 4. **SBOM integrity**: generate stable package identifiers, autoload edges, and bin scripts while abstaining from policy decisions.