Skills
skills/nextcommerceco/skills/next-theme-dev/Gen Agent Trust Hub

next-theme-dev

Pass

Audited by Gen Agent Trust Hub on Apr 29, 2026

Risk Level: SAFE
Full Analysis
  • [EXTERNAL_DOWNLOADS]: References the installation of the vendor-provided 29next-theme-kit package via pip.
  • [EXTERNAL_DOWNLOADS]: Suggests downloading official Tailwind CSS binaries from the well-known tailwindlabs/tailwindcss GitHub repository for styling workflows.
  • [COMMAND_EXECUTION]: Performs routine environment checks using shell commands to verify the presence of ntk, Python, and theme configuration files.
  • [REMOTE_CODE_EXECUTION]: Orchestrates build pipelines via Makefile and package.json that execute local scripts and standard utilities during the development process.
  • [INDIRECT_PROMPT_INJECTION]: The skill is designed to process and modify theme files (e.g., templates, manifests, configurations) which serves as an ingestion surface.
  • Ingestion points: Reads manifest.json, config.yml, and documentation files from developer-docs/ (SKILL.md).
  • Boundary markers: Absent; the skill directly interpolates and manipulates file content.
  • Capability inventory: The skill has access to Bash, Read, Write, Edit, Grep, and Glob tools.
  • Sanitization: None; as a code-generation and editing tool, the agent is expected to interact directly with raw source files.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 29, 2026, 10:22 AM
Security Audit — agent-trust-hub — next-theme-dev