jamesh:
I’d prefer you wait until we have the review tools checks in place. We want to make sure all theme snaps eligible to install are “safe”, and we don’t yet have a complete picture of what that means yet. It will probably include:
Contains the expected content interface slots
Shared content is valid (valid images, valid CSS, etc).
The snap does not provide any apps, daemons, or hooks
The last one is intended to ensure that installing the theme snap doesn’t result in code execution. We don’t want someone to package a popular theme and sneak in a cryptocurrency miner as a background service, for instance.
It is true that this needs more discussion. It is easy enough to verify no apps, daemons, hooks and even executable code, but thinking through what this looks like end to end is definitely needed.