theme-factory
Pass
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: SAFENO_CODEPROMPT_INJECTION
Full Analysis
- [NO_CODE]: The skill consists entirely of Markdown-based theme definitions and documentation. It contains no executable scripts, source code, or binary files.
- [PROMPT_INJECTION]: The skill includes a 'Create your Own Theme' capability in
SKILL.mdthat generates styles based on user input, creating an indirect prompt injection surface. - Ingestion points: User-provided natural language descriptions used for generating custom themes.
- Boundary markers: No specific delimiters or safety instructions are provided for isolating user-provided theme descriptions.
- Capability inventory: The agent is limited to reading theme files and modifying the styling (colors and fonts) of existing artifacts. No high-risk capabilities such as network access, shell command execution, or sensitive file system access are present.
- Sanitization: No input validation or output sanitization is defined for the custom theme generation process.
Audit Metadata