tmux
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill provides patterns for executing and controlling processes within tmux sessions, including creating sessions (tmux new-session), sending keystrokes (tmux send-keys), and managing session lifecycles (tmux kill-session).
- [PROMPT_INJECTION]: The skill exhibits an indirect prompt injection surface due to its process monitoring capabilities. Ingestion points: The tmux capture-pane command is used throughout the skill to read output from running processes, such as for the Wait for prompt and Checking Process Status patterns. Boundary markers: The skill does not define specific markers or delimiters to distinguish between trusted instructions and untrusted terminal output. Capability inventory: The skill utilizes tmux send-keys to send commands directly to the shell, which represents a high-impact capability if influenced by malicious input. Sanitization: No sanitization or filtering of the captured terminal output is performed before it is processed by the agent.
Audit Metadata