claude-code-harness

Fail

Audited by Snyk on Jun 23, 2026

Risk Level: CRITICAL
Full Analysis

CRITICAL E005: Suspicious download URL detected in skill instructions.

  • Suspicious download URL detected (high risk: 0.80). This is a GitHub repository hosted under an individual/unknown account (not an official vendor or well-known project) so its code, release artifacts, and any bundled executables/hooks should be treated as untrusted and potentially used to distribute malware.

Issues (1)

E005
CRITICAL

Suspicious download URL detected in skill instructions.

Audit Metadata
Risk Level
CRITICAL
Analyzed
Jun 23, 2026, 02:17 AM
Issues
1
Security Audit — snyk — claude-code-harness