xaem-theme-ui
Pass
Audited by Gen Agent Trust Hub on Mar 30, 2026
Risk Level: SAFEPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill manages the generation of visual themes and their translation into code. It includes strict structural constraints and a validation checklist that ensures all output remains within safe design parameters.- [SAFE]: No external network requests, data exfiltration patterns, or hardcoded credentials were found in the instructions or code examples.- [SAFE]: The skill mentions local file paths (e.g., apps/web/lib/design-tokens.ts) for reference purposes only, which is standard for project-specific tooling.- [PROMPT_INJECTION]: The skill possesses a surface for indirect prompt injection as it ingests user-provided theme briefs and mood boards. Ingestion points: User theme briefs; Boundary markers: None; Capability inventory: CSS/TS code generation; Sanitization: Range validation and contrast checks.
Audit Metadata