Skills
skills/besty0728/unity-skills/unity-console/Gen Agent Trust Hub

unity-console

Pass

Audited by Gen Agent Trust Hub on Mar 14, 2026

Risk Level: SAFEPROMPT_INJECTION
Full Analysis
  • [PROMPT_INJECTION]: The skill exhibits a surface for indirect prompt injection because it processes untrusted log data from the Unity Editor console.
  • Ingestion points: The console_get_logs and console_get_stats skills read arbitrary strings directly from the Unity console history.
  • Boundary markers: There are no explicit delimiters or instructions provided to the agent to ignore potentially malicious commands embedded within the logs.
  • Capability inventory: The skill includes file system write capabilities through console_export.
  • Sanitization: The skill does not specify any sanitization of log content before returning it to the agent, nor does it validate the savePath parameter to prevent writing outside intended directories.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 14, 2026, 11:28 PM