verification-before-completion
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOW
Full Analysis
- Prompt Injection (SAFE): The skill does not attempt to override system prompts or bypass safety filters. Instead, it adds a layer of operational safety by requiring evidence before success claims.
- Data Exposure & Exfiltration (SAFE): No sensitive file paths, hardcoded credentials, or network requests are present.
- Unverifiable Dependencies & Remote Code Execution (SAFE): The skill does not define dependencies or execute remote scripts. Mention of tools like
npm testare used as illustrative examples of verification commands the agent should already be capable of running. - Obfuscation (SAFE): The content is clear and readable markdown with no hidden characters, encoded strings, or homoglyphs.
- Indirect Prompt Injection (LOW): While the skill instructs the agent to process external data (such as VCS diffs and reports from other agents), it acts as a defensive strategy by explicitly instructing the agent not to trust those reports blindly and to verify them independently. It reduces the risk of successful indirect injection through rigorous validation requirements.
Audit Metadata