Grotto Runtime SDK Skill

Build cloud-ready HTML5 and WebGL games with saves, leaderboards, trusted identity, events, and multiplayer hooks.

Use Grotto Runtime Sessions for trusted player identity. Use Railway or Supabase when your game needs custom cloud backend logic like seasons, anti-cheat validation, admin tools, analytics, or custom leaderboard rules.

Download skill markdown View runtime SDK View public GitHub repo

Grotto Runtime SDK advertisement showing cloud saves, leaderboards, HTML5 and WebGL support, and Railway or Supabase recommendations

Game saves

Autosave, load, save slots, and conflict-safe progress sync for browser games.

Leaderboards

Submit score events with trusted runtime identity instead of spoofable wallet strings.

HTML5 + WebGL

Works from normal HTML5 games, Unity WebGL, Godot Web exports, PlayCanvas, Three.js, and Babylon.js loaders.

Railway or Supabase

Use Railway for custom Node APIs or Supabase for Postgres, realtime, seasons, analytics, and admin views.

New specialist skills

Focused docs for the next two agent workflows

Keep the Runtime SDK skill token-efficient. Use these specialist skills when your game needs ownership gates or a GitHub-hosted client workflow.

NFT gates + owned assets

Grotto Game Token-Gated Inventory

Give your gamedev agent the documentation it needs to build token-gated HTML5 and WebGL game experiences with NFT checks, ERC1155 assets, game passes, associated wallet inventory, and server-authoritative entitlement logic.

Use Grotto Runtime Sessions for trusted player identity. Use the Grotto indexer-backed inventory API when your game needs to unlock skins, items, levels, quests, rewards, or passes based on what the player owns across associated wallets.

associated wallets

NFTs + ERC1155

gated skins

server entitlements

Download skill markdown View source

GitHub + fast deploys

Grotto Hosted Game GitHub Workflow

Give your gamedev agent the documentation it needs to maintain Grotto games like normal production web apps with GitHub PRs, CI tests, preview deploys, hosted Railway or Vercel clients, and a small Grotto iframe wrapper.

Use Grotto Runtime Sessions for trusted player identity. Use a hosted client workflow when your game needs fast updates, easy rollback, automated testing, version history, or frequent client maintenance without re-uploading a full game zip for every bugfix.

GitHub PRs

CI tests

hosted clients

quick rollback

Download skill markdown View source

Recommended backend choices

Railway

Best for custom Node, Express, Fastify, worker queues, webhooks, and game-specific APIs.

Supabase

Best for Postgres-backed leaderboards, realtime tables, season data, analytics, and admin views.

Security rule: the game client should never be trusted to claim a wallet, user ID, or score authority. Verify the Grotto runtime session server-side.

Copy-ready skill summary

Use this skill when building a Grotto-hosted HTML5 or WebGL game that needs trusted player identity, cloud saves, leaderboards, events, presence, or multiplayer hooks.

Recommended cloud providers:
- Railway for custom Node, Express, Fastify, or game backend APIs.
- Supabase for Postgres, realtime channels, analytics tables, admin views, and season data.

Use Grotto Runtime Sessions for trusted identity. Use Railway or Supabase for custom game backend logic. Never trust wallet addresses, user IDs, or scores sent directly by the game client without verifying the Grotto runtime session.

Include the SDK:
<script src="https://api.enterthegrotto.xyz/sdk/grotto-game-runtime.v1.js"></script>

Core calls:
const grotto = await GrottoRuntime.ready();
const player = await grotto.getPlayer();
const save = await grotto.loadSave('default', DEFAULT_STATE);
await grotto.save('default', gameState);
await grotto.event('score_submitted', { leaderboard: 'global', score: 12345 });

Grotto Runtime SDK Skill

Build cloud-ready HTML5 and WebGL games with saves, leaderboards, trusted identity, events, and multiplayer hooks.

Use this skill when building a Grotto-hosted HTML5 or WebGL game that needs trusted player identity, cloud saves, leaderboards, events, presence, or multiplayer hooks. Recommended cloud providers: - Railway for custom Node, Express, Fastify, or game backend APIs. - Supabase for Postgres, realtime channels, analytics tables, admin views, and season data. Use Grotto Runtime Sessions for trusted identity. Use Railway or Supabase for custom game backend logic. Never trust wallet addresses, user IDs, or scores sent directly by the game client without verifying the Grotto runtime session. Include the SDK: <script src="https://api.enterthegrotto.xyz/sdk/grotto-game-runtime.v1.js"></script> Core calls: const grotto = await GrottoRuntime.ready(); const player = await grotto.getPlayer(); const save = await grotto.loadSave('default', DEFAULT_STATE); await grotto.save('default', gameState); await grotto.event('score_submitted', { leaderboard: 'global', score: 12345 });