cmux-custom-sidebar

Pass

Audited by Gen Agent Trust Hub on Jun 12, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: Downloads custom sidebar documentation from the official manaflow-ai GitHub repository (manaflow-ai/cmux). This resource is provided by the vendor for reference and documentation purposes and does not involve the execution of remote scripts.
  • [COMMAND_EXECUTION]: Interacts with the local cmux binary to validate, select, and reload sidebar configurations. These commands are necessary for the skill to apply changes to the host application and are used according to the tool's intended design.
  • [PROMPT_INJECTION]: The skill generates SwiftUI-style code based on user requests, creating an ingestion surface for potentially untrusted data.
    • Ingestion points: User's plain-language description of sidebar content is translated into code.
    • Boundary markers: No explicit delimiters or ignore-instructions warnings are used when generating the .swift file contents.
    • Capability inventory: Local file writing to ~/.config/cmux/sidebars/ and execution of the cmux CLI utility.
    • Sanitization: The instructions do not specify sanitization or validation of the generated code before it is written to the file system, though the tool's interpreter reportedly handles unsupported syntax gracefully.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 12, 2026, 10:00 PM
Security Audit — agent-trust-hub — cmux-custom-sidebar