| name | ai-output-validation |
| description | Validates, parses, and sanitizes AI-generated outputs before they reach end users or downstream systems. Structured output enforcement, schema validation, and fallback handling. |
| category | test |
| applies-to | ["claude","gemini","cursor","copilot","any"] |
| version | 1.0.0 |
Overview
AI models produce unstructured text by default. In production pipelines, unstructured outputs cause brittle parsing, unexpected behavior, and silent failures. This skill enforces structured output generation and validation at every AI system boundary.
When to Use
- Any AI pipeline where output is used programmatically (not just displayed to a user)
- When AI output feeds into another system, database, or agent
- When building agentic systems that make decisions based on AI output
- When AI generates code, SQL, JSON, or other structured formats
Process
Step 1: Define Output Schema Before Prompting
- Define the exact structure you need BEFORE writing the prompt.
- Use JSON Schema or Pydantic/Zod models to formalize the expected output.
- Example schema:
{
"type": "object",
"required": ["summary", "action", "confidence"],
"properties": {
"summary": {"type": "string", "maxLength": 200},
"action": {"type": "string", "enum": ["approve", "reject", "review"]},
"confidence": {"type": "number", "minimum": 0, "maximum": 1}
}
}
- Design the schema to be minimal — only what you actually need.
Verify: Schema is defined and versioned before any prompt is written.
Step 2: Prompt for Structured Output
- Explicitly instruct the model to output in your defined format.
- Include the schema or an example in the prompt.
- Use models/APIs that support structured output natively where available (OpenAI structured outputs, Gemini JSON mode, Anthropic tool use).
- Prompt pattern:
Respond ONLY with valid JSON matching this schema:
{schema}
Do not include explanation or markdown. Output raw JSON only.
Verify: Prompt explicitly requests structured output with schema reference.
Step 3: Validate and Parse Output
- Parse the output against your schema — never use raw AI output directly.
- If parsing fails:
- Log the raw output and the parse error
- Retry with a clarification prompt (max 2 retries)
- After 2 failures: return a structured error, not a crash
- Validate semantic constraints beyond the schema:
- Is the
confidence score consistent with the action?
- Are referenced IDs in the database?
- Are dates in the valid range?
Verify: All AI outputs pass schema validation before use. Failed validations are logged.
Step 4: Sanitize for Downstream Use
- If AI output will be rendered as HTML: sanitize against XSS.
- If AI output will be executed as code: sandbox it and review before execution.
- If AI output will be stored in a database: sanitize against injection.
- Never trust AI output the way you'd trust your own code — it's user-generated content.
Verify: AI output is sanitized appropriate to its destination.
Step 5: Monitor Output Quality
- Log the schema validation pass/fail rate.
- Sample and review AI outputs regularly for semantic correctness.
- Alert on high validation failure rates (>5%).
Verify: Validation metrics are tracked. Alert configured.
Common Rationalizations (and Rebuttals)
| Excuse | Rebuttal |
|---|
| "The model outputs valid JSON 99% of the time" | That 1% causes production incidents. Always validate. |
| "We display it to users, not parse it" | Users act on AI output. Wrong output drives wrong actions. |
| "Structured output adds latency" | Validation is microseconds. Debugging unvalidated output is hours. |
| "The model is deterministic enough" | No LLM is deterministic enough to skip validation. |
Red Flags
- AI output used directly without schema validation
JSON.parse() without try/catch around AI output- AI-generated SQL or code executed without review
- No logging of validation failures
- AI output rendered as HTML without sanitization
Verification
References
