theme-factory
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [No Executable Code] (SAFE): The skill consists entirely of Markdown files defining theme metadata (colors and fonts). No scripts, binaries, or configuration files are present, preventing any form of command execution or malware persistence.
- [Indirect Prompt Injection] (LOW): The skill supports generating custom themes based on user-provided descriptions. This creates an attack surface where malicious input could influence the agent's behavior during the application of the theme. Ingestion points: Custom theme generation logic in SKILL.md. Boundary markers: Absent in the instructions. Capability inventory: Styling and modifying artifacts (slides, HTML, docs). Sanitization: Absent.
Audit Metadata