Godot Engine 3d Developer
Security checks across malware telemetry and agentic risk
Overview
This is an instruction-only Godot game-development skill whose build, asset, task, posting, and memory workflows fit its stated purpose, with normal permission caution needed.
Install this only where the agent is allowed to create or update project records, trigger builds/tests/conversions, read PR diffs through the backend, post release notes, and store project memories. Use least-privilege Tasking.tech, Git, worker, and channel permissions, and do not persist secrets or sensitive internal details in game memory.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
65/65 vendors flagged this skill as clean.