cmux-localization

Pass

Audited by Gen Agent Trust Hub on Jun 12, 2026

Risk Level: SAFE
Full Analysis
  • [SAFE]: The skill is a standard set of instructions for auditing and implementing localization for the 'cmux' project. No malicious patterns, prompt injections, or obfuscated content were detected.
  • [COMMAND_EXECUTION]: The documentation suggests using rg (ripgrep) to search local project files for bare English strings. This is a benign developer workflow used for static code analysis and does not involve downloading or executing untrusted code from external sources.
  • [DATA_EXPOSURE]: The skill references project-specific files such as Localizable.xcstrings, messages/en.json, and the local configuration at ~/.config/cmux/cmux.json. These references are consistent with the stated purpose of managing project localizations and do not involve unauthorized access to sensitive system secrets or data exfiltration.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 12, 2026, 10:00 PM
Security Audit — agent-trust-hub — cmux-localization