tmux
Pass
Audited by Gen Agent Trust Hub on Mar 3, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill uses tmux send-keys to execute arbitrary commands and interact with terminal applications.
- [PROMPT_INJECTION]: The skill has an indirect prompt injection surface as it captures and processes terminal output. Ingestion points: scripts/wait-for-text.sh uses tmux capture-pane. Boundary markers: None. Capability inventory: Full shell command execution via tmux. Sanitization: None.
- [DATA_EXFILTRATION]: Terminal output is read for local synchronization and prompt detection; no evidence of remote data exfiltration was found.
Audit Metadata