godot-platform-desktop
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [SAFE] (SAFE): No security issues detected. The skill follows best practices for Godot development, such as using
user://for persistent data and providing user-configurable settings. - [DATA_EXPOSURE] (SAFE): The skill handles standard game data (resolutions, volume, achievements). It accesses the Steam ID using the standard GodotSteam API, which is expected for Steam integration.
- [INDIRECT_PROMPT_INJECTION] (LOW): While the skill reads data from
user://settings.cfg, the GodotConfigFileclass provides structured access to key-value pairs, minimizing the surface for injection attacks in this context.
Audit Metadata