theme-factory
Pass
Audited by Gen Agent Trust Hub on Feb 16, 2026
Risk Level: LOWNO_CODE
Full Analysis
- No Code (SAFE): The skill consists entirely of Markdown-based documentation and theme specifications. No executable scripts, binaries, or configuration files for dependency managers are present, eliminating traditional code-based attack vectors.
- Indirect Prompt Injection (INFO): The skill defines a surface for indirect prompt injection as it is designed to ingest and modify external artifacts. * Ingestion points: Target artifacts for styling and user-provided descriptions for custom theme generation. * Boundary markers: No explicit delimiters or instructions to ignore embedded commands are provided. * Capability inventory: The skill instructs the agent to perform aesthetic modifications (applying colors and fonts) to files. * Sanitization: No input validation or sanitization logic is described. * Assessment: While an ingestion surface exists, the resulting risk is negligible because the skill's capabilities are strictly limited to styling properties rather than administrative or executable actions.
Audit Metadata