theme-factory
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [Indirect Prompt Injection] (LOW): The skill ingests user-provided descriptions to generate custom themes, representing a potential surface for indirect instructions.
- Ingestion points: User input provided during the 'Create your Own Theme' process in SKILL.md.
- Boundary markers: Absent; no delimiters are used to isolate user-provided descriptions from the generation instructions.
- Capability inventory: File system read access for theme files and the ability to modify artifacts such as slide decks.
- Sanitization: Absent; there is no mention of input validation or filtering for the custom theme generation logic.
Audit Metadata