tmux-lanes
Pass
Audited by Gen Agent Trust Hub on Feb 23, 2026
Risk Level: SAFECOMMAND_EXECUTIONDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION] (LOW): Executes shell commands specifically targeting
tmuxto manage and inventory workspace panes. This is the intended primary function of the skill. - [DATA_EXFILTRATION] (LOW): Employs
tmux capture-paneto read the last 5 lines of terminal output from other panes. While used for status classification, this behavior allows the agent to access potentially sensitive information displayed in other active sessions. - [PROMPT_INJECTION] (LOW): Vulnerable to indirect prompt injection. The skill ingests untrusted data from terminal buffers which may contain malicious instructions designed to influence the agent's workspace management decisions.
- Ingestion points:
tmux capture-paneoutput in the status view logic. - Boundary markers: Absent; the agent is instructed to classify raw terminal output directly.
- Capability inventory: System command execution via
tmuxand shell scripting. - Sanitization: Absent; the captured output is processed without escaping or filtering.
Audit Metadata