quad-fact-check

The artifact is an operational playbook for a 4-way AI cross-fact-check workflow. It functions as described but creates a moderate privacy/data-exfiltration risk: it instructs users to read arbitrary local files and send full contents to remote AI CLIs (Gemini, Codex) without redaction, size limiting, or guidance to avoid sending secrets/PII. There are no code-level indications of embedded malware, backdoors, or obfuscation. Recommend: (1) Add explicit warnings and safe-use guidance about not sending secrets/PII, (2) implement or document redaction and file-size limits, (3) advise verification/pinning of CLI binaries and endpoints, (4) consider a local-only analysis fallback for sensitive docs.