The Agent Skills Directory

[COMMAND_EXECUTION]: The skill defines a script discovery function find_cmux_settings that searches for an executable named cmux-settings. This search logic prioritizes paths relative to the root of the current git repository or the current working directory (e.g., $root/skills/cmux-settings/scripts/cmux-settings). This allows for local command hijacking if an attacker provides a malicious script at that location in a repository processed by the agent.
[REMOTE_CODE_EXECUTION]: By executing code based on locations that can be influenced by the contents of the current workspace, the skill creates a vector for executing untrusted instructions from external sources (such as a cloned repository). This violates the principle of relying on verified or globally installed toolsets.

cmux-keyboard-shortcuts