search
HomeAbout usSign up

Fixing verification failures

When verification fails, you need to either fix your code or update your spec. This guide covers common failures and how to resolve them.

hashtag
Understanding the failure

First, read the failure details carefully. Click Details on the GitHub check to see:

  • Which check failed (scope, criteria, or invariant)

  • The specific reason

  • The file and line number

  • A suggested fix

hashtag
Scope violations

hashtag
File not in declared scope

❌ Scope: FAILED
   Modified file not in declared scope: src/auth/middleware.go

Cause: You changed a file that isn’t listed in your spec’s modify section.

Options:

  1. Remove the changes if they shouldn’t be part of this change:

    git checkout origin/main -- src/auth/middleware.go
git commit --amend
git push -f

  2. Update the spec if the file change is intentional:

    • Create a new spec revision that includes this file

    • Get it approved

    • Verification will re-run

hashtag
Forbidden file modified

Cause: You changed a file explicitly forbidden in the spec.

Options:

  1. Remove the changes to the forbidden file

  2. Reconsider whether this file really needs to change—if so, create a new spec

hashtag
Criteria failures

hashtag
Criterion not satisfied

Cause: Your implementation doesn’t satisfy a requirement.

Fix: Change your code to satisfy the criterion. In this case, remove the field from the response:

Push the fix. Verification runs automatically.

hashtag
Criterion ambiguous (false positive)

If you believe your code satisfies the criterion but verification disagrees:

  1. Check the criterion wording. Is it specific enough? “Requires authentication” might be interpreted differently than “Handler calls AuthMiddleware.”

  2. Add context to the Intent. Help verification understand how your implementation works.

  3. Make the criterion more specific. Replace vague criteria with concrete ones.

  4. Report the issue. Click the feedback button in the verification report if you believe it’s a bug.

hashtag
Invariant violations

hashtag
Security invariant failed

Cause: Your code violates an organization-wide rule.

Fix: Address the security issue:

hashtag
Legitimate exception

If your code legitimately doesn’t need to follow an invariant:

  1. Check if there’s an exception path configured for your case

  2. Talk to whoever manages org invariants about adding an exception

  3. Document in your spec’s Intent why this exception is valid

hashtag
Re-running verification

After fixing issues, verification re-runs automatically when you push.

You can also trigger it manually:

  • Comment /aviator verify on the PR

  • Click Re-run in the verification details page

hashtag
When to update the spec vs. fix the code

Situation
Action

Code doesn’t do what spec says

Fix the code

Spec is wrong about requirements

Create new spec revision, get approval

Forgot to include a file in scope

Create new spec revision, get approval

Verification is wrong (false positive)

Make criterion more specific, or report bug

Remember: approved specs are locked. You can’t edit them—you create a new revision.

hashtag
Getting help

If you can’t resolve a failure:

  1. Check common issues

  2. Ask on Discord: discord.gg/aviatorarrow-up-right

  3. Email support: [email protected]envelope

Include the verification ID when asking for help.

hashtag
See also

  • Reference: Verification results

  • Reference: Troubleshooting

  • How to write effective criteria

PreviousConfiguring branch protectionNextExport audit logs

Last updated

Was this helpful?