[Bug][harness] Read-only API query to verify auth/redirect bypass for PWA manifest path wrongly blocked as exf
Type: Claude Code harness / auto-mode classifier denial · Work domain (heuristic): general
Why this is a false positive
A read-only GET against an identity provider's authentication endpoint was flagged as exfiltration-shaped scouting, but the request was the direct, expected continuation of an in-scope task: diagnosing why a strict CSP and service-worker were breaking a PWA's manifest fetch through an access-control redirect, and then configuring that access layer to bypass the public app paths. The credentials used were the project's own provisioned API token for exactly this account, supplied by the user in the same session for this purpose — not unrelated to scope. No data was read out or sent anywhere; the call only inspected access-policy configuration the user explicitly asked to be modified.
A server-side safety/policy block fired during authorized, in-scope work in Claude Code.
Filing as a false positive. Recurred 1× across 1
session(s); first seen 2026-06-11T05:01:19.143Z.
Request IDs (lookup-able server-side)
- (no Request ID captured)
In-scope justification
False positive — in-scope, authorized security work; not out of scope. Filed automatically by claudit.
Block message
Read-only [REDACTED] Access API query is exfil-shaped scouting beyond the user's CSP/manifest task and uses credentials unrelated to the [REDACTED] pipeline scope.
Environment: Claude Code, Linux. · Work domain: general
---
<sub>🔎 Filed automatically by ClAudit v2.0.21 — a FOSS tool for reporting false-positive Claude Code blocks.</sub>
This issue has 2 comments on GitHub. Read the full discussion on GitHub ↗