lanes-status
Pass
Audited by Gen Agent Trust Hub on Feb 23, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION] (SAFE): The skill utilizes standard
tmuxcommands (list-panes,capture-pane) to inventory and inspect the state of the workspace. These commands are localized to the user's environment and are essential for the skill's primary purpose. - [DATA_EXFILTRATION] (LOW): The skill captures the last 8 lines of text from every active tmux pane. While this is necessary for status classification, it creates a risk of exposing sensitive information (such as API keys, passwords, or PII) that might be visible in terminal buffers. There is no evidence of the skill sending this data to external servers.
- [PROMPT_INJECTION] (LOW): The skill is susceptible to indirect prompt injection (Category 8).
- Ingestion points: Untrusted data enters the agent context via the
tmux capture-panecommand inSKILL.mdwhich reads the terminal buffer. - Boundary markers: Absent. The output is preceded by a simple header (
=== Pane $i ===) but lacks explicit instructions for the agent to ignore commands found within the captured text. - Capability inventory: The agent can execute shell commands via tmux as part of this skill.
- Sanitization: Absent. The terminal output is passed directly to the agent without filtering or escaping.
Audit Metadata