registry  /  perfect-harness-engineering  /  2.0.1

perfect-harness-engineering@2.0.1

The harness around Claude Code that makes it reliable — tested hooks, two-tier context, a PIV+E pipeline with an agile delivery layer, doc-grounded research reuse, and a vault-linked knowledge loop. Installs a hardened .claude/ payload.

Static Scan Results

scanned 10h ago · by rust-scanner

Static analysis completed at 65.0% confidence. No malicious behavior was detected; 8 low-signal pattern(s) were surfaced and cleared.

Static reason
No blocking static signals were detected.

Decision evidence

public snapshot
Behavioral surface
Source
ChildProcessCryptoEnvironmentVarsFilesystem
Supply chain
HighEntropyStringsUrlStrings
ManifestNo manifest risk signals triggered.
scanned 26 file(s), 292 KB of source, external domains: api.internal, evil.example, github.com

Source & flagged code

2 flagged · loading source
template/.claude/tooling/codebase_search.pyView file
path = template/.claude/tooling/codebase_search.py kind = payload_in_excluded_dir sizeBytes = 11721 magicHex = [redacted]
High
Payload In Excluded Dir

Package hides binary, compressed, or executable-looking payloads in test/fixture/hidden paths.

template/.claude/tooling/codebase_search.pyView on unpkg
path = template/.claude/tooling/codebase_search.py kind = build_helper sizeBytes = 11721 magicHex = [redacted]
Medium
Ships Build Helper

Package ships non-JavaScript build or shell helper files.

template/.claude/tooling/codebase_search.pyView on unpkg

Findings

1 High3 Medium4 Low
HighPayload In Excluded Dirtemplate/.claude/tooling/codebase_search.py
MediumEnvironment Vars
MediumShips Build Helpertemplate/.claude/tooling/codebase_search.py
MediumStructural Risk Force Deep Review
LowScripts Present
LowFilesystem
LowHigh Entropy Strings
LowUrl Strings