EasyClaudeCode
C+
Agent Trust Score
69/100
Scanned 4/7/2026
Agent Safety (40%)
66
Code Security (25%)
93
Cost Governance (20%)
65
Compliance (15%)
40
Findings (11)
[AS-01]Write Guard Semantic Integrity
HIGHFound 5 keyword-based write guard(s) without intent classification
Fix: Replace keyword checks with intent classification. Add write_intent_classifier to middleware.
[AS-03]Resource Ceiling Enforcement
HIGHMissing: max iterations/turns
Fix: Add resource ceiling env vars, rate limiting middleware, and max_turns config.
[AS-04]Session Identity Integrity
HIGHMissing: identity re-validation
Fix: Rotate session tokens on SessionStart. Validate identity on every new session.
[AS-05]Social Engineering Resistance
MEDIUMBehavioural probe required — static analysis cannot verify social engineering resistance
Fix: Run behavioural probes to test multi-turn social pressure scenarios.
[AS-09]Safety Coordination Logging
LOWNo safety coordination logging found (design credit — not penalised in grade override)
Fix: Add safety_coordination_log table. Wire agent refusal events to log.
[CS-04]Token/Key Governance
MEDIUM2/3 governance controls present (expiry: true, hash: true, rotation: false)
Fix: Hash tokens at rest. Add expiry. Track rotation.
[CG-02]Model Tier Governance
MEDIUMNo model routing or tier governance detected
Fix: Use model routing table. Route lightweight tasks to Haiku.
[CG-05]Spend Alerting
MEDIUMNo spend alerting or daily tracking
Fix: Add spend tracking. Alert at configurable thresholds.
[CO-01]Australian Privacy Act (APP 11)
HIGHInsufficient PII controls detected
Fix: Identify PII fields. Log access. Define retention policy.
[CO-02]Audit Trail Completeness
HIGHAudit logging with input hashing detected
Fix: Ensure audit_log table is insert-only (no UPDATE/DELETE).
[CO-04]Data Residency
MEDIUMNo data residency documentation or AU region configuration found
Fix: Document data storage locations. Ensure AU data stays in AU Supabase region.
Scan History
| Date | Grade | Score | Safety | Code | Cost | Comply | Type |
|---|---|---|---|---|---|---|---|
| 4/7/2026 | C+ | 69 | 66 | 93 | 65 | 40 | portfolio_scan |
Audit Log
No audit events recorded yet.
Permission Policies
| Agent | Scope | Operation | Approval |
|---|---|---|---|
| * | session_complete | write | No |
| * | chat | write | No |
| * | execute | write | No |
| * | dispatch | write | No |
| * | pairing | write | No |
| * | sessions | read | No |
| * | queue | read | No |
| * | projects | read | No |
| * | files | read | No |
| * | usage | read | No |
| * | health | read | No |
| session-agent | queue | read | No |
| session-agent | queue_push | write | Required |
| session-agent | session_start | write | No |
| session-agent | sessions | read | No |
Rate Limits
| Agent | Window | Max Requests | Current |
|---|---|---|---|
| * | day | 20000 | 170 |
| * | day | 20000 | 171 |
| * | hour | 2000 | 107 |
| * | hour | 2000 | 106 |
| * | minute | 120 | 1 |
| * | minute | 120 | 1 |