Claude Code

The Harness SAST and SCA plugin for Claude Code enables Secure AI Coding, bringing real-time security into your AI-assisted development workflow. All AI-generated code is automatically scanned, validated, and remediated as you work.

Features

Harness SAST and SCA for Claude Code provides:

Secure AI Coding: Real-time security scanning of AI-generated code
Automatic Remediation: Context-aware fixes suggested inline as you code
Diff-aware Analysis: Focused scans on changes introduced by the AI agent

Language support and requirements

Harness SAST and SCA for Claude Code currently:

Supports the analysis of Java, JavaScript / TypeScript, Python, C, PHP.
Requires the use of a workstation running Linux, macOS, or Windows.

Dependencies

Before proceeding with this integration, ensure that your workstation meets the prerequisites for using Harness SAST and SCA.

The plugin will automatically download and install the latest version of the Harness SAST and SCA CLI for you. This will not affect the system version of the CLI (if you have it installed); these two versions will be maintained in parallel.

Ensure that you've added sl and node or python to your system PATH variable.

Installation

Step 1: Add the plugin marketplace

Add the Harness SAST and SCA marketplace to Claude Code:

/plugin marketplace add https://github.com/ShiftLeftSecurity/claude-plugins
/reload-plugins

tip

Stay up to date with the latest features and fixes, type /plugin, select Marketplaces, then harness-sast-and-sca-plugins, and Select Enable auto-update.

Step 2: Install the plugin

Install the Harness SAST and SCA plugin:

/plugin install harness-sast-and-sca
/reload-plugins

note

Make sure you have the Harness SAST and SCA CLI (sl) properly configured. Follow the setup guide for instructions.

Secure AI Coding

When the Harness SAST and SCA plugin is configured, it automatically enables security scanning that brings real-time security into your workflow. This ensures that all AI-generated code is continuously scanned, validated, and remediated as you work. For more information, you can check the Secure AI Coding docs.

How it works

You provide a prompt, and Claude Code generates or modifies code
The plugin automatically performs diff-aware SAST analysis on the changed code
Vulnerabilities and insecure patterns are highlighted
Context-aware remediation suggestions are provided
You review and accept fixes, or ask Claude Code for automatic remediation

FAQ

Should I enable "Auto-update" feature on the Claude Code plugin?

Ans: "Auto-Update" is preferred, as it keeps the plugin up to date. We recommend restarting Claude Code every time the plugin is updated.

Scans on Claude Code are not working. How do I troubleshoot?

Ans: Validate if you are using the latest version of Claude Code and Harness SAST and SCA plugin from marketplace. Also try restarting your Claude Code application. If you still have issues with the scan operation, contact Qwiet AI by Harness Customer Success Team for assistance.

Help

Contact the Qwiet AI by Harness Customer Success Team for assistance.

Additional Details

This integration is actively supported but should be considered beta software. It is still experimental and may change or break at any time.

Features​

Language support and requirements​

Dependencies​

Installation​

Step 1: Add the plugin marketplace​

Step 2: Install the plugin​

Secure AI Coding​

How it works​

FAQ​

Help​

Additional Details​