themes
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- Prompt Injection (SAFE): The instructions in
SKILL.mdare standard functional guidelines for a theme application workflow. No attempt to bypass safety filters or override core instructions was detected. - Data Exposure & Exfiltration (SAFE): No sensitive file paths, hardcoded credentials, or network requests are present. The skill only interacts with its own internal asset files.
- Obfuscation (SAFE): All content is in plain text markdown. No encoded strings, hidden characters, or homoglyphs were found.
- Unverifiable Dependencies & Remote Code Execution (SAFE): The skill does not include any package manifests (like
package.jsonorrequirements.txt) and does not download or execute any remote scripts. - Privilege Escalation & Persistence (SAFE): There are no commands related to system permissions, service installation, or persistence mechanisms.
- Dynamic Execution (SAFE): The skill consists entirely of declarative markdown data and natural language instructions. No code is generated or executed at runtime.
Audit Metadata