theme-factory
Pass
Audited by Gen Agent Trust Hub on Feb 27, 2026
Risk Level: SAFEPROMPT_INJECTIONNO_CODE
Full Analysis
- [PROMPT_INJECTION]: The feature allowing users to create custom themes on-the-fly provides a surface for indirect prompt injection.\n
- Ingestion points: User-provided descriptions for custom themes and theme specification files in the
themes/directory (SKILL.md).\n - Boundary markers: No delimiters or instructions to ignore embedded commands are specified for the incoming theme data (SKILL.md).\n
- Capability inventory: The skill has the capability to read local files and modify the visual styling of documents and slide decks (SKILL.md).\n
- Sanitization: The skill lacks protocols for sanitizing or validating user input before processing it for theme generation.\n- [NO_CODE]: The skill does not include any executable scripts, binaries, or dependency management files. All logic is defined through natural language instructions in markdown.
Audit Metadata