tmux
Pass
Audited by Gen Agent Trust Hub on Mar 23, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill inherently involves executing shell commands to manage tmux sessions (e.g.,
tmux new,tmux send-keys). However, it explicitly instructs the agent to use 'literal sends' (-l) and careful quoting to prevent shell expansion or command injection vulnerabilities. - [COMMAND_EXECUTION]: Provides two helper scripts,
find-sessions.shandwait-for-text.sh, which wrap tmux commands for session discovery and output polling. These scripts include basic input validation and useset -euo pipefailfor safer execution. - [DATA_EXFILTRATION]: While the skill can
capture-pane(read terminal output), it does not include any mechanisms to transmit this data to external servers. The instructions emphasize user monitoring of sessions.
Audit Metadata