macpilot-window-manager
Pass
Audited by Gen Agent Trust Hub on Feb 18, 2026
Risk Level: SAFE
Full Analysis
- Prompt Injection (SAFE): No instructions found that attempt to override agent behavior or bypass safety guidelines.
- Data Exposure & Exfiltration (SAFE): No access to sensitive files or hardcoded credentials. All window management operations are local.
- Obfuscation (SAFE): All commands and descriptions are in clear text with no hidden or encoded content.
- Unverifiable Dependencies & Remote Code Execution (SAFE): The skill references 'macpilot', a known macOS utility. It does not attempt to download or execute external scripts at runtime.
- Privilege Escalation (SAFE): No commands requiring sudo or administrative privileges are used.
- Persistence Mechanisms (SAFE): No attempts to modify startup scripts or scheduled tasks.
- Indirect Prompt Injection (SAFE): Ingestion point: Window titles are read via 'macpilot window list --json'. Capabilities: Window focusing and arrangement. While boundary markers are absent, the risk is minimal for this administrative utility.
- Dynamic Execution (SAFE): No code generation or runtime compilation detected.
Audit Metadata