theme-factory
Pass
Audited by Gen Agent Trust Hub on Feb 15, 2026
Risk Level: LOWPROMPT_INJECTIONNO_CODE
Full Analysis
- [Indirect Prompt Injection] (LOW): The skill possesses an attack surface as it ingests untrusted artifacts (documented in SKILL.md) and has the capability to modify them. 1. Ingestion point: User-provided artifacts (slides, docs). 2. Boundary markers: None specified. 3. Capability inventory: Modification of artifact styling. 4. Sanitization: None specified. The risk is considered low as the capabilities are limited to visual styling and the agent possesses no high-privilege tools.
- [Metadata Poisoning] (LOW): The instruction to display 'theme-showcase.pdf' references a file not present in the skill package, which is a minor consistency issue.
- [NO_CODE] (SAFE): No executable code (Python, JavaScript, or Shell) was found in the provided files, which eliminates risks associated with RCE, malicious scripts, or unsafe dependencies.
Audit Metadata