Back to directoryCompareComparing injection-surface-audit ↔ session-persistence-three-channels

Pack comparison

Two packs, side-by-side. Merged comparisons, shared shape, and diff highlights in one view.

ACommunitysecurityv0.1.0Recommended

Injection Surface Audit

injection-surface-audit

Every agent product ships injection surfaces. Audit them before an attacker does.

Install

npx attrition-sh pack install injection-surface-audit

Token budget

—

Pass rate

—

Avg tokens

—

Publisher

Agent Workspace

Compatibility

claude-codecursorcodex-cliany-agent-harness

BCommunityharnessv0.1.0Recommended

Session Persistence — Three Channels

session-persistence-three-channels

Append-only JSONL across 3 channels. Permissions never restore on resume — the friction IS the safety.

Install

npx attrition-sh pack install session-persistence-three-channels

Token budget

Pass rate

—

Avg tokens

—

Publisher

Agent Workspace

Compatibility

claude-codecursorcodex

Contract summary

3 required outputs, 1 permissions, 2 completion conditions.

out: .transcripts/<session>.jsonl

Shared shape

What both packs have in common

Overlap across canonical pattern, compatibility, tags, and required packs.

Compatibility

claude-codecursor

Merged comparisons

Head-to-head claims from both packs

Each row is attributed to the pack that authored it. The winner column is normalised to this compare view (A / B / Tie).

Source	Alternative	Axis	Winner	Note
A	owasp-llm-top10	maintainability	A	OWASP LLM Top-10 is a vocabulary; this pack is an actionable checklist tied to specific code patterns. Use together: OWASP for framing, this pack for line-level audit.
A	llm-guardrails-middleware	complexity	Alternative	Runtime guardrail middleware (NeMo, Guardrails AI) adds automated filtering — lower manual effort, adds a dependency. This pack is zero-runtime and targets design-time holes. Layered defence uses both.
A	red-team-engagement	accuracy	Alternative	A professional red-team engagement finds novel classes a checklist can't. Use this pack monthly; commission a red-team annually.
B	claude-code-guide	complexity	Alternative	Claude Code Guide covers session memory in one section; this pack is the dedicated persistence specification with the deliberate-non-feature framing.
B	subagent-delegation-three-isolation-modes	maintainability	Tie	This pack documents session + global channels; subagent-delegation documents the sidechain channel. Stack them for full 3-channel coverage.
B	injection-surface-audit	accuracy	Tie	The permissions-non-restoration invariant is one of the audit's checks. This pack names the invariant; that pack verifies nothing erodes it.

Diff highlights

What each pack brings that the other doesn't

Unique coverage and any measurable gap between the two.

Unique to A — Injection Surface Audit

Comparisons not in B

owasp-llm-top10llm-guardrails-middlewarered-team-engagement

Compatibility A-only

codex-cliany-agent-harness

Tags A-only

securityprompt-injectionssrfauditowasp-llmsupply-chain

Unique to B — Session Persistence — Three Channels

Comparisons not in A

claude-code-guidesubagent-delegation-three-isolation-modesinjection-surface-audit

Compatibility B-only

codex

Tags B-only

harnesspersistencesessionappend-onlyjsonlsafetyresumeclaude-codedive-into-claude-code

Swap / reset

Swap A ↔ B Pick two different packs