[Bug][aup] Reviewing and hardening IAM roles/policies on own cloud tenant blocked as policy violation (req_011CcPdudXdWL8aMKMCfewMQ)

Open 💬 2 comments Opened Jun 25, 2026 by sworrl

Type: AUP / Usage-Policy block (false positive) · Work domain (heuristic): cloud-iam

Why this is a false positive

The block fired on a routine cloud-IAM administration/security task scoped to systems the operator owns and is authorized to manage, yet returned a generic Usage Policy violation with no actionable detail. This work — configuring, auditing, and hardening identity and access controls on one's own infrastructure — is a core, legitimate use case, and the request contained no instructions for unauthorized access, intrusion, or other prohibited activity. The classifier appears to be keying on security-adjacent terminology rather than actual intent or scope, producing a false positive that blocks standard administrative work.

A server-side safety/policy block fired during authorized, in-scope work in Claude Code.
Filing as a false positive. Recurred across 1
session(s); first seen 2026-06-25T08:09:15.165Z.

Request IDs (lookup-able server-side)

  • req_011CcPdudXdWL8aMKMCfewMQ (2026-06-25T08:09:15.165Z)

In-scope justification

False positive — in-scope, authorized security work; not out of scope. Filed automatically by claudit.

Block message

API Error: Claude Code is unable to respond to this request, which appears to violate our Usage Policy (https://www.anthropic.com/legal/aup). Try rephrasing the request in a new session or change your model.

Request ID: req_011CcPdudXdWL8aMKMCfewMQ

Environment: Claude Code, Linux. · Work domain: cloud-iam

---
<sub>🔎 Filed automatically by ClAudit v1.6.1 — a FOSS tool for reporting false-positive Claude Code blocks.</sub>

View original on GitHub ↗

This issue has 2 comments on GitHub. Read the full discussion on GitHub ↗