Bug Bounty Reference Stack
nmap, amass, httpx, nuclei, ffuf, Playwright, CVE enrichment — the canonical offensive tool registry, studied as schema-first harness wrappers.
The bug bounty stack is a tool registry, not a pipeline. As a deterministic pipeline it is inflexible; as a registry under an agent loop (as in CAI), it is the offensive capability surface. The harness engineering job is the schema-first wrapper, not the orchestration script.
Scope validation must check resolved IPs, not just hostnames. An agent can construct a tool call with a hostname that resolves to an out-of-scope IP. A hostname-only check is a legal exposure. The validator's correctness is the control.
Playwright is the signal-vs-noise filter. nuclei and ffuf are stateless scanners that produce false positives. Playwright (stateful, DOM-aware) confirms whether a finding is real. Without it, the agent drowns in low-quality findings.
The evidence chain is the harness's product. A bug bounty program can reject a finding without repro steps. The chain (timestamp, scope tag, tool + params, output, severity) is the repro — what makes output submittable.