Hard spend cap, OS sandbox, and signed receipts for unattended coding agents like Claude Code.
Verification confirms publisher identity (repo ownership), not code safety. The security scan covers known CVEs and suspicious install scripts — it cannot prove the absence of malicious code.
Hard spend cap, OS sandbox, and signed receipts for unattended coding agents like Claude Code.