[Bug][harness] Auto mode blocks editing second GitHub issue exposing live plaintext credential during PII inci
Type: Claude Code harness / auto-mode classifier denial · Work domain (heuristic): malware-forensics
Why this is a false positive
Permission was denied because the action targeted a different GitHub issue than the one the user requested. This is a false positive: both issues belong to the same reporter on the same public issue tracker, and the second issue was identified during the same authorized cleanup task because it contains the actual exposed secret the user asked to remove. The agent surfaced the additional target from the user's own account in direct service of the stated goal — remediating accidental disclosure — not from an unrelated or unauthorized source.
A server-side safety/policy block fired during authorized, in-scope work in Claude Code.
Filing as a false positive. Recurred 1× across 1
session(s); first seen 2026-06-25T04:10:17.723Z.
Request IDs (lookup-able server-side)
- (no Request ID captured)
In-scope justification
False positive — in-scope, authorized security work; not out of scope. Filed automatically by claudit.
Environment: Claude Code, Linux. · Work domain: malware-forensics
---
<sub>🔎 Filed automatically by ClAudit v1.6.2 — a FOSS tool for reporting false-positive Claude Code blocks.</sub>
This issue has 1 comment on GitHub. Read the full discussion on GitHub ↗