W17: close 9 audit findings — atomic pointers, SSE robustness, leak fix, verification (W17.1-W17.4)

- W17.1 (曹武): Verify F-13.3-1/2/3 all fixed by W14.1, close 3 findings (1 CRITICAL + 1 HIGH + 1 MEDIUM)
- W17.2 (赵码): Fix F-13.2-3 SSE [DONE] sentinel trimming + F-13.2-4 g_host/g_http/g_config atomic pointers in deepseek_plugin
- W17.3 (王测): Verify 4 W14 findings (F-13.1-1/4, F-13.2-1/2) + F-11.7-2 confirmed fixed, close 5 findings
- W17.4 (马奔): Fix F-13.1-2 response_body leak on error path + F-13.1-3 g_host/g_http atomic pointers in anthropic_plugin

Build 0 error, ctest 4/4 pass, metadata check clean.

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>

agents/devops-ma/profile.md

@@ -21,11 +21,16 @@ performance_log:
     event: "入职 dstalk 团队"
     rating: ongoing
   - date: 2026-05-27
-    event: "落地 CI pipeline (GitHub Actions)"
+    event: "W17.4 修复 anthropic_plugin 2条 HIGH 发现"
     detail: >
-      创建 .github/workflows/ci.yml，实现双矩阵构建 (ubuntu-24.04 + windows-2025)。
-      PR 仅跑 Ubuntu，push master 跑全矩阵节省 minutes。
-      集成 Conan 依赖缓存 (含 ~/.conan2/p)，checkout fetch-depth=1 提速。
+      F-13.1-2: my_chat ret!=0 错误路径新增 if(response_body) host->free(response_body)
+      释放，与 my_chat_stream 保持一致。
+      F-13.1-3: g_host/g_http 改为 std::atomic<T*> load(acquire)/store(release)，
+      参考 session_plugin.cpp 模式。on_init 使用 store(release)，on_shutdown 使用
+      store(nullptr, release)。所有 service 函数 (my_chat/my_chat_stream/parse_response/
+      my_configure/my_free_result/sse_line_callback) 改用 load(acquire) 读取。
+      findings-registry.md 两条发现状态改为 FIXED。
+      编译 0 error + ctest 4/4 pass。
     rating: done
 current_groups: []
 ---