theme-factory
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFENO_CODE
Full Analysis
- NO_CODE (SAFE): The skill is entirely descriptive and contains no executable scripts (.py, .js, .sh), binaries, or configuration files that could execute commands on a host system. Analysis of all 11 files shows only Markdown content used for theme definitions.
- DATA_EXFILTRATION (SAFE): No network-capable commands (e.g., curl, wget, fetch) or access to sensitive local file paths (e.g., ~/.ssh, .env) were detected.
- PROMPT_INJECTION (SAFE): The instructions in
SKILL.mdare focused on the intended styling task. There are no attempts to bypass safety filters, extract system prompts, or override agent constraints. - INDIRECT_PROMPT_INJECTION (SAFE): While the skill processes user-provided 'artifacts' (slides, docs), it lacks the capabilities (such as file-writing or network access) that would allow an attacker to leverage an indirect injection to cause harm beyond styling modifications.
Audit Metadata