tmux

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). This skill's workflow (SKILL.md) explicitly uses tmux capture-pane and send-keys to read and act on outputs from SSH remote servers, dev server logs, and other Claude/Codex instances (e.g., "tmux capture-pane -t -p -J" and the "SSH / dev server / 에이전트" sections), meaning it ingests untrusted, third-party runtime content that can influence subsequent agent actions.