Skill

evidence-validator

Validates audit evidence artifacts including screenshots, logs, configurations, and policies for completeness, timeliness, relevance, and authenticity against control requirements. Useful for SOC 2 compliance reviews.

security

Install

npx claudepluginhub grcengclub/claude-grc-engineering --plugin grc-auditor

Tool Access

This skill is limited to using the following tools:

ReadGlobGrep

Preview

Analyzes and validates evidence artifacts submitted for audit review.

SKILL.md

Similar Skills

cache-components

Guides Next.js Cache Components and Partial Prerendering (PPR) with cacheComponents enabled. Implements 'use cache', cacheLife(), cacheTag(), revalidateTag(), static/dynamic optimization, and cache debugging.

cache-components

139.0k

claude-opus-4-5-migration

2 files

Migrates code, prompts, and API calls from Claude Sonnet 4.0/4.5 or Opus 4.1 to Opus 4.5, updating model strings on Anthropic, AWS, GCP, Azure platforms.

claude-opus-4-5-migration

83.2k

bmad-help

Analyzes BMad project state from catalog CSV, configs, artifacts, and query to recommend next skills or answer questions. Useful for help requests, 'what next', or starting BMad.

bmad-pro-skills

43.8k

Stats

Parent Repo Stars21

Parent Repo Forks4

Last CommitApr 13, 2026

Actions

View Source View Plugin View on GitHub View README

Evidence Validator

Analyzes and validates evidence artifacts submitted for audit review.

Capabilities

Completeness Check: Verifies evidence covers all aspects of the control
Timeliness Validation: Confirms evidence is from the audit period
Relevance Assessment: Ensures evidence actually demonstrates the control
Authenticity Review: Identifies potential tampering or inconsistencies

Evidence Types Supported

Screenshots and images
Configuration files (JSON, YAML, XML)
Log files and exports
Policy documents (PDF, DOCX, MD)
Access review spreadsheets
System-generated reports

Output Format

Generates evidence review memos with:

Evidence identification
Control mapping
Validation results
Gaps and recommendations
Auditor notes

Example Usage

When reviewing evidence for SOC 2 CC6.1 (Logical Access):

Validates access review screenshots show appropriate approvals
Confirms termination evidence matches HR records
Verifies configuration exports match stated policies