Did the agent stay on task? Local-only CLI + GitHub Action that compares a stated task to the actual PR diff and flags scope creep (sensitive-surface edits, new deps, capability signals, lifecycle scripts).
Drift inferred · capture-to-capture
No drift recorded — single capability capture; advisories appear once its surface changes.
transport — counts 0 tools · 0 res
· 0 prompts
permission surface via README inference
no tools enumerated yet for this server.
evidence-backed
findings quoted directly from the published source artifact — not inferred
this server hasn't been statically analyzed yet (npm/PyPI artifacts only).