feat: complete Epic 1 — team management & permission system

- Story 1.1: Permission enum, config, AuthorizesPermissions & HasWorkspaceScope traits, member→worker migration
- Story 1.2: Team page with member list, invitation system with queued email
- Story 1.3: Role assignment (Manager/Worker) and member removal with activity logging
- Story 1.4: Owner-only permission toggle matrix for Managers (manage team, view logs, configure portal)
- Story 1.5: Role-based access enforcement — Workers see only assigned declarations/clients, sidebar scoping
- Story 1.6: Workspace switcher dropdown for multi-workspace users with session-based switching
- 83 new/modified files, 182 tests passing with zero regressions

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

_bmad-output/implementation-artifacts/sprint-status.yaml

@@ -50,13 +50,13 @@ development_status:
   epic-0-retrospective: done
 
   # Epic 1: Team Management & Permission System
-  epic-1: backlog
-  1-1-permission-configuration-and-controller-traits: backlog
-  1-2-team-management-page-view-and-invite-members: backlog
-  1-3-role-assignment-and-member-removal: backlog
-  1-4-manager-permission-toggle-matrix: backlog
-  1-5-role-based-access-enforcement-across-views: backlog
-  1-6-workspace-switching-for-multi-workspace-owners: backlog
+  epic-1: in-progress
+  1-1-permission-configuration-and-controller-traits: done
+  1-2-team-management-page-view-and-invite-members: done
+  1-3-role-assignment-and-member-removal: done
+  1-4-manager-permission-toggle-matrix: done
+  1-5-role-based-access-enforcement-across-views: done
+  1-6-workspace-switching-for-multi-workspace-owners: done
   epic-1-retrospective: optional
 
   # Epic 2: Role-Driven Dashboard & Command Center