[Bug][aup] Adding geoip data file to proxy container image build wrongly blocked as policy violation

Open 💬 1 comment Opened Jun 25, 2026 by sworrl

Type: AUP / Usage-Policy block (false positive) · Work domain (heuristic): infra-devops

Why this is a false positive

This task involves routine self-hosted infrastructure-as-code work: building a container image, configuring a health check, migrating VPN tunnel configurations, and adding a geo-IP data file so a proxy daemon can apply a standard private-range routing rule. All of these are legitimate, widely documented sysadmin and DevOps operations performed by the operator on their own systems, with no harmful intent, target, or capability involved. The block appears to be triggered by superficial keyword matching on common networking and proxy tooling rather than any actual policy-violating content in the request.

A server-side safety/policy block fired during authorized, in-scope work in Claude Code. Filing as a false positive. Recurred across 1 session(s); first seen 2026-05-26T03:53:26.611Z.

Request IDs (lookup-able server-side)

  • (no Request ID captured)

In-scope justification

False positive — in-scope, authorized security work; not out of scope. Filed automatically by claudit.

Block message

API Error: Claude Code is unable to respond to this request, which appears to violate our Usage Policy (https://www.anthropic.com/legal/aup). Please double press esc to edit your last message or start a new session for Claude Code to assist with a different task. If you are seeing this refusal repeatedly, try running /model claude-sonnet-4-20250514 to switch models.

Environment: Claude Code, Linux. · Work domain: infra-devops

---
<sub>🔎 Filed automatically by ClAudit v2.0.26 — a FOSS tool for reporting false-positive Claude Code blocks.</sub>

View original on GitHub ↗

This issue has 1 comment on GitHub. Read the full discussion on GitHub ↗