exempt-vuln
Pass
Audited by Gen Agent Trust Hub on Jun 15, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns or security vulnerabilities were detected. The skill adheres to best practices for security management tools, including:
- Confirmation Workpoints: The skill requires an explicit confirmation step (Step 5) before performing any write operations (
harness_create). - Scope Limitation: Instructions clearly define and enforce mutual exclusivity for scoping (Project vs. Pipeline vs. Target) to prevent configuration errors.
- Bulk Operation Safety: Implements a 100-issue cap for bulk operations and mandates explicit user opt-in for chunking larger sets, preventing accidental mass exemptions.
- Trusted Resources: All tools (
harness-mcp-v2) and identifiers are consistent with the official Harness vendor context.
Audit Metadata