Great plugin, appreciated being able to sanity check my new theme. However, I would also like to be confident that the executable parts of the theme (ie. .phps) haven't got any unusual code in them, eg. calls to system() or other exploit-style functions that have no possible reason to be in theme code.
Do you think you guys could add some simple checks for obvious hacks?