Verification Before Completion
Pass
Audited by Gen Agent Trust Hub on Apr 9, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill provides utility scripts (
verify-completion.sh,verify-completion-simple.sh) and code snippets that execute various CLI tools for code validation. This includes test runners, linters, and formatters which are executed locally within the project environment. - [EXTERNAL_DOWNLOADS]: The scripts trigger standard package managers such as
npm,yarn,pip,go mod, andcargoto install project dependencies. This behavior is standard and necessary for build and verification workflows. - [SAFE]: The skill proactively incorporates security validation by using established tools like
bandit,safety,npm audit,gosec, andcargo-auditto scan for vulnerabilities. - [SAFE]: The use of Git hooks for pre-commit or pre-push validation is a documented and standard development practice to enforce quality standards automatically.
Audit Metadata