Skills
skills/decentraland/sdk-skills/sdk-scenes/Gen Agent Trust Hub

sdk-scenes

Pass

Audited by Gen Agent Trust Hub on Apr 13, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill defines procedures for fetching 3D models and media from external sources. This is a primary function for scene creation and is mitigated by mandatory user confirmation guidelines provided in the behavioral section.
  • [COMMAND_EXECUTION]: The skill mentions shell commands like curl only within instructional examples of what the agent should avoid saying to users; there are no instructions for the agent to execute these commands.
  • [DATA_EXFILTRATION]: Network capabilities such as fetch() and signedFetch() are documented for use within the Decentraland QuickJS sandbox. These are standard APIs for the environment and are used for scene functionality rather than accessing or exfiltrating sensitive data.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 13, 2026, 11:58 AM