godot-master
Warn
Audited by Gen Agent Trust Hub on Mar 7, 2026
Risk Level: MEDIUMCOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTIONCREDENTIALS_UNSAFE
Full Analysis
- [COMMAND_EXECUTION]: The script godot-master/scripts/mcp_setup_mcp_diagnostic_tool.gd uses OS.execute to run powershell.exe for checking system execution policies.
- [COMMAND_EXECUTION]: The skill includes a bash script godot-master/scripts/export_builds_headless_build.sh that executes the Godot binary and sed for build automation.
- [COMMAND_EXECUTION]: godot-master/scripts/platform_web_web_bridge_sync.gd utilizes JavaScriptBridge.eval() to execute arbitrary JavaScript code within a web browser context.
- [EXTERNAL_DOWNLOADS]: godot-master/scripts/mcp_setup_mcp_config_generator.gd generates a configuration snippet that triggers npx to download and execute the @modelcontextprotocol/server-godot package from the NPM registry.
- [PROMPT_INJECTION]: The discovery system in godot-master/scripts/skill_discovery_skill_indexer.gd parses SKILL.md files from the filesystem, which creates a surface for indirect prompt injection.
- [PROMPT_INJECTION]: Ingestion points: godot-master/scripts/skill_discovery_skill_indexer.gd (reads and parses markdown files from a local directory).
- [PROMPT_INJECTION]: Boundary markers: Absent; metadata is extracted and processed directly from file content.
- [PROMPT_INJECTION]: Capability inventory: OS.execute (environment interaction) and JavaScriptBridge.eval (web interaction).
- [PROMPT_INJECTION]: Sanitization: None; extracted strings are passed directly to the agent context.
- [CREDENTIALS_UNSAFE]: Scripts such as godot-master/scripts/save_load_systems_save_migration_manager.gd contain hardcoded encryption keys used for local save file security.
Audit Metadata