godot-genre-racing
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [Prompt Injection] (SAFE): No instructions were found that attempt to override AI safety guidelines or bypass operational constraints.
- [Data Exposure & Exfiltration] (SAFE): There are no commands that access sensitive user data, environment variables, or perform unauthorized network requests.
- [Obfuscation] (SAFE): The content is clear and readable. No Base64 encoding, zero-width characters, or other hidden content techniques are present.
- [Unverifiable Dependencies & Remote Code Execution] (SAFE): The skill does not perform external package installations or execute code from remote sources. All referenced scripts and snippets are local or inline.
- [Privilege Escalation] (SAFE): No administrative commands (sudo, chmod) or attempts to modify system-level configurations were identified.
- [Persistence Mechanisms] (SAFE): The skill does not attempt to modify shell profiles, crontabs, or system services for persistent access.
- [Metadata Poisoning] (SAFE): The metadata fields (name, description, author) are consistent with the instructional content and do not contain deceptive instructions.
- [Indirect Prompt Injection] (SAFE): The skill provides static game development templates and does not include logic for processing untrusted external data that could influence the agent's behavior.
- [Time-Delayed / Conditional Attacks] (SAFE): All logic is dedicated to game physics and AI mechanics without hidden triggers or time-based conditions.
- [Dynamic Execution] (SAFE): No runtime code generation, unsafe deserialization (pickle/yaml.load), or dynamic library loading was detected.
Audit Metadata