hyva-child-theme
Pass
Audited by Gen Agent Trust Hub on Apr 2, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADS
Full Analysis
- [COMMAND_EXECUTION]: The skill executes standard system and Magento CLI commands including
mkdir,rsync,bin/magento setup:upgrade, andbin/magento cache:flush. These operations are localized to the Magento project environment for theme registration and maintenance. - [EXTERNAL_DOWNLOADS]: Triggers dependency resolution through Composer and NPM. It specifically references official Hyvä Themes packages, such as
hyva-themes/magento2-default-theme-csp, ensuring assets are retrieved from the vendor's official distribution channels. - [PROMPT_INJECTION]: The skill processes user-supplied strings for 'Vendor Name' and 'Theme Name'. It includes explicit instructions for the agent to enforce PascalCase naming conventions and verify directory existence, which serves as a prompt-level sanitization mechanism for file path construction and configuration mapping.
Audit Metadata