Skills
skills/manaflow-ai/cmux-skills/cmux-config/Gen Agent Trust Hub

cmux-config

Pass

Audited by Gen Agent Trust Hub on Jun 17, 2026

Risk Level: SAFE
Full Analysis
  • [COMMAND_EXECUTION]: The bundled Python script scripts/cmux-settings utilizes subprocess.call to launch system editors (determined by the $EDITOR environment variable or common binary paths like 'code') and the cmux application CLI. These are standard operations for a configuration tool and align with the skill's primary purpose.
  • [SAFE]: The skill manages ~/.config/cmux/cmux.json, which contains application settings. While some fields like automation.socketPassword are sensitive, access is restricted to the vendor's configuration path and is necessary for the skill to function.
  • [EXTERNAL_DOWNLOADS]: The skill references a configuration schema hosted on the vendor's official GitHub repository (manaflow-ai/cmux) for JSON validation. This is a trusted resource and does not involve the execution of remote code.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 17, 2026, 06:05 AM
Security Audit — agent-trust-hub — cmux-config