tmux
Pass
Audited by Gen Agent Trust Hub on Feb 21, 2026
Risk Level: SAFE
Full Analysis
- EXTERNAL_DOWNLOADS (SAFE): The skill references the Tmux Plugin Manager (TPM) available on GitHub (github.com/tmux-plugins/tpm). As this is a trusted GitHub organization and the repository is a standard community tool, this reference is considered safe under the Trust-Scope-Rule.
- COMMAND_EXECUTION (SAFE): The skill contains various shell scripts (e.g.,
scripts/tmux-config-generator.shandscripts/tmux-session-manager.sh) and bash snippets. These are the primary intended functions of a tmux management skill and do not contain patterns for unauthorized command execution or system modification. - CREDENTIALS_UNSAFE (SAFE): No hardcoded API keys, tokens, or sensitive credential files (such as SSH keys or cloud provider configurations) were identified in the analyzed content.
- PROMPT_INJECTION (SAFE): The markdown instructions and YAML metadata are purely functional and do not attempt to override agent instructions, bypass safety filters, or extract system prompts.
- DATA_EXFILTRATION (SAFE): No network exfiltration patterns or suspicious data transmission commands were found. Clipboard interaction (via
pbcopy) is limited to standard tmux copy-mode functionality.
Audit Metadata