unity-timeline
Pass
Audited by Gen Agent Trust Hub on Apr 20, 2026
Risk Level: SAFE
Full Analysis
- [PROMPT_INJECTION]: No instructions were found that attempt to override agent safety or system instructions.
- [DATA_EXPOSURE_AND_EXFILTRATION]: The skill does not access sensitive user files or attempt to transmit data to external servers.
- [UNVERIFIABLE_DEPENDENCIES_AND_REMOTE_CODE_EXECUTION]: No external packages or remote scripts are downloaded or executed.
- [INDIRECT_PROMPT_INJECTION]: The skill has a surface for indirect prompt injection as it processes strings like track names and asset paths that could originate from untrusted sources. * Ingestion points: name, folder, trackName, and bindingObjectName parameters in SKILL.md. * Boundary markers: Not present. * Capability inventory: Modifications to Unity assets and scene hierarchy via timeline toolset. * Sanitization: No explicit validation mentioned in the skill definition.
Audit Metadata