unity-mcp-orchestrator
Pass
Audited by Gen Agent Trust Hub on Apr 1, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No security issues or malicious patterns were identified in the analyzed orchestration logic.\n- [COMMAND_EXECUTION]: The skill implements extensive capabilities for Unity Editor control, including GameObject manipulation, script compilation triggers, and scene management. These tools are functionally necessary for its primary purpose.\n- [EXTERNAL_DOWNLOADS]: The skill facilitates the download of technical documentation from official Unity domains and manages package dependencies through standard registries like OpenUPM. These references point to well-known and trusted developer services.\n- [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface as it ingests data from the Unity console and external documentation while possessing capabilities for script and project modification. This is a standard architectural characteristic for orchestration tooling.\n
- Ingestion points: read_console and unity_docs (tools-reference.md)\n
- Boundary markers: Includes instructions to validate templates and check console output before proceeding.\n
- Capability inventory: create_script, manage_gameobject, manage_packages (tools-reference.md)\n
- Sanitization: Relies on platform safety filters and manual developer verification of generated code.
Audit Metadata