godot-gdscript-patterns
Pass
Audited by Gen Agent Trust Hub on Jun 28, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill serves as an educational resource providing architectural patterns for Godot 4 game development, including state machines and component systems. All code content is within documentation and no external scripts or remote dependencies are included.
- [CREDENTIALS_UNSAFE]: The save system example in
resources/implementation-playbook.mduses a placeholder encryption key (your_secret_key_here). This is a benign documentation placeholder, and the skill includes explicit instructions for developers to replace it with a secure key. - [DATA_EXFILTRATION]: The implementation patterns utilize the Godot-specific
user://path for local data persistence. This is the standard, secure way to store game state and does not involve exfiltration to external networks. - [COMMAND_EXECUTION]: The skill's metadata refers to false-positive detections of external commands; these were confirmed to be markdown code fence delimiters in GDScript examples and do not pose a security risk.
Audit Metadata