theme-factory
Pass
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [PROMPT_INJECTION]: The 'Create your Own Theme' feature introduces an indirect prompt injection surface by allowing the agent to process arbitrary user-provided descriptions to generate hex codes and font pairings. * Ingestion points: User-supplied theme descriptions in the custom theme generation workflow. * Boundary markers: Absent; the skill lacks instructions for the agent to distinguish between user-provided data and its own core instructions. * Capability inventory: The skill is designed to modify document styling (fonts and colors), which is a limited capability. * Sanitization: No validation or sanitization of user input is described in the prompt.
- [NO_CODE]: The skill consists entirely of static Markdown files and natural language instructions. The absence of scripts, binaries, or automated build steps significantly reduces the technical attack surface for remote code execution or persistence.
Audit Metadata