Affaan M

Sources: GitHub profile · AgentShield repository · Everything Claude Code repository · @affaanmustafa on X

Who

Independent developer working on tooling for the Claude Code ecosystem. Built AgentShield — the agent-configuration security scanner — at the Cerebral Valley × Anthropic Claude Code Hackathon in February 2026. Maintainer of Everything Claude Code (ECC), an ecosystem repository the AgentShield README cites at 42K+ stars at the time of fetch, which provides the distribution channel for the ECC plugin form of AgentShield and for the ECC Tools GitHub App and ECC Tools Pro commercial tier.

Relevance to This Wiki

Author of the first open-source scanner the wiki has cataloged whose unit of analysis is the Claude Code config tree itself. The design choices encoded in AgentShield — provenance-aware runtimeConfidence labeling, cross-file hook-manifest awareness, corpus-gate with prioritized improvement plan, time-bound policy exceptions, stable-fingerprint remediation plans — are documentary precedents for what agent-config audit tooling should look like.

Outputs

• AgentShield — 102-rule scanner for .claude/ configurations; CLI / GitHub Action / ECC plugin / GitHub App.
• Everything Claude Code (ECC) — distribution ecosystem for Claude Code plugins, including the ECC plugin form of AgentShield and the ECC Tools GitHub App.
• ECC Tools Pro — paid tier ($19 / seat / month, Stripe-billed) for org-wide automated repo analysis built on top of AgentShield.

Notable Statements / Positions

“The AI agent ecosystem is growing faster than its security tooling … Developers install community skills, connect MCP servers, and configure hooks without any automated way to audit the security of their setup.” — AgentShield README, framing for why agent-config auditing should be a first-class CI step.