Public beta. SignalSpore is a decision-support registry, not certification or security assurance. Evidence may be incomplete; verify controls in your own environment. Methodology · Launch audit · Correction policy · Limitations
Agent rollout decision record

Claude Code

Conditional pilot Pilot Claude Code only in non-production repositories with branch isolation, protected branches, command restrictions, audit logging, test credentials, and mandatory human review before merge.

Verdict

Conditional pilot

Terminal command and file-editing power is useful for bounded repo work but requires shell, branch, secret, and review controls before pilot.

Decision depth: AI-assisted launch evidence record

Evidence audit: AI-assisted evidence audit

Permission footprint

Repository readexplicitly evidenced
File editsexplicitly evidenced
Shell commandsexplicitly evidenced
Pull requestsexplicitly evidenced
Issue/PR commentsnot evidenced
Network/API callsnot evidenced
Secrets/env varsnot evidenced
Sandboxingnot evidenced
Permission controlsnot evidenced
Audit loggingnot evidenced
Enterprise adminnot evidenced
Branch isolationnot evidenced
Human approvalnot evidenced
Production deploymentnot evidenced

Power level

Level 3: executes actions

Highest-risk evidenced power: shell command execution

Controls separated

Required before pilot — organization must implement

least-privilege permissions, isolated branch, protected branches, mandatory human review, sandbox, command allowlist, audit logs, separate test credentials

Vendor-native control evidenced

branch isolation, security docs

Vendor-native control not evidenced

native sandbox, permission system, audit logs, admin console, SSO, data-retention settings

Pilot plan

Task class: Terminal and coding agent

Environment: non-production repository

Maximum access: shell command execution

Reviewer: engineering manager plus security reviewer

Success criteria: small reversible code changes pass tests and review without secret exposure

Stop conditions: unexpected command execution, broad repo access, failed audit trail, or reviewer cannot understand diffs

Prohibited: production deploys, unreviewed merges, secret access, large autonomous rewrites

Blocking issues and unknowns

Blockers: No blocking issue for the base record; run a personalized check for your environment.

Unknowns: Exact enterprise audit coverage and local secret exposure controls require team verification.

Limitations: Terminal use means local environment configuration materially changes risk.

Claim-level evidence

reads repository

Claude Code: reads repository

Status: explicitly-supported · Reviewer: AI-assisted evidence audit · Confidence: 86/100

Source: Claude Code overview (official-docs)

Excerpt: Claude Code is an agentic coding tool that reads your codebase, edits files, runs commands, and integrates with your development tools. Available in your terminal, IDE, desktop app, and browser.

Limitations: Official-source excerpt is claim-specific; tenant/workspace configuration can still change rollout risk.

edits files

Claude Code: edits files

Status: explicitly-supported · Reviewer: AI-assisted evidence audit · Confidence: 86/100

Source: Claude Code overview (official-docs)

Excerpt: Claude Code is an agentic coding tool that reads your codebase, edits files, runs commands, and integrates with your development tools. Available in your terminal, IDE, desktop app, and browser.

Limitations: Official-source excerpt is claim-specific; tenant/workspace configuration can still change rollout risk.

runs commands

Claude Code: runs commands

Status: explicitly-supported · Reviewer: AI-assisted evidence audit · Confidence: 86/100

Source: Claude Code overview (official-docs)

Excerpt: Claude Code is an agentic coding tool that reads your codebase, edits files, runs commands, and integrates with your development tools. Available in your terminal, IDE, desktop app, and browser.

Limitations: Official-source excerpt is claim-specific; tenant/workspace configuration can still change rollout risk.

opens pull requests

Claude Code: opens pull requests

Status: explicitly-supported · Reviewer: AI-assisted evidence audit · Confidence: 86/100

Source: Claude Code overview (official-docs)

Excerpt: Claude Code works directly with git. It stages changes, writes commit messages, creates branches, and opens pull requests.

Limitations: Official-source excerpt is claim-specific; tenant/workspace configuration can still change rollout risk.

comments on issues or PRs

Claude Code: comments on issues or PRs

Status: not-evidenced · Reviewer: AI-assisted evidence audit · Confidence: 24/100

Source: Anthropic official source set (official-docs)

Excerpt:

Limitations: No exact official-source excerpt was found for comments on issues or PRs; treat as an evidence gap.

accesses secrets or environment variables

Claude Code: accesses secrets or environment variables

Status: not-evidenced · Reviewer: AI-assisted evidence audit · Confidence: 24/100

Source: Anthropic official source set (official-docs)

Excerpt:

Limitations: No exact official-source excerpt was found for accesses secrets or environment variables; treat as an evidence gap.

makes network/API calls

Claude Code: makes network/API calls

Status: not-evidenced · Reviewer: AI-assisted evidence audit · Confidence: 24/100

Source: Anthropic official source set (official-docs)

Excerpt:

Limitations: No exact official-source excerpt was found for makes network/API calls; treat as an evidence gap.

supports sandboxing

Claude Code: supports sandboxing

Status: not-evidenced · Reviewer: AI-assisted evidence audit · Confidence: 24/100

Source: Anthropic official source set (official-docs)

Excerpt:

Limitations: No exact official-source excerpt was found for supports sandboxing; treat as an evidence gap.

supports permission controls

Claude Code: supports permission controls

Status: not-evidenced · Reviewer: AI-assisted evidence audit · Confidence: 24/100

Source: Anthropic official source set (official-docs)

Excerpt:

Limitations: No exact official-source excerpt was found for supports permission controls; treat as an evidence gap.

provides audit logging

Claude Code: provides audit logging

Status: not-evidenced · Reviewer: AI-assisted evidence audit · Confidence: 24/100

Source: Anthropic official source set (official-docs)

Excerpt:

Limitations: No exact official-source excerpt was found for provides audit logging; treat as an evidence gap.

supports enterprise administration

Claude Code: supports enterprise administration

Status: not-evidenced · Reviewer: AI-assisted evidence audit · Confidence: 24/100

Source: Anthropic official source set (official-docs)

Excerpt:

Limitations: No exact official-source excerpt was found for supports enterprise administration; treat as an evidence gap.

supports branch isolation

Claude Code: supports branch isolation

Status: not-evidenced · Reviewer: AI-assisted evidence audit · Confidence: 24/100

Source: Anthropic official source set (official-docs)

Excerpt:

Limitations: No exact official-source excerpt was found for supports branch isolation; treat as an evidence gap.

Alternatives

  • OpenAI Codex — relevant alternative for Terminal and coding agent.
  • Gemini CLI — relevant alternative for Terminal and coding agent.
  • Aider — relevant alternative for Terminal and coding agent.