Track which AI agent wrote which lines in a shared Git checkout; each commits only its own lines.
Verification confirms publisher identity (repo ownership), not code safety. The security scan covers known CVEs and suspicious install scripts — it cannot prove the absence of malicious code.
Track which AI agent wrote which lines in a shared Git checkout; each commits only its own lines.