Tmux Agents

A spawned agent could modify project files, run tool actions, or spend API credits in the background without asking again for each change.

The script launches coding agents with permission-bypass or full-auto editing flags, which can allow broad code changes without normal approval prompts.

Unexpected shell metacharacters in a task or custom agent command could execute commands other than the intended agent invocation.

The script constructs shell commands from the selected agent and task text and sends them into a tmux shell. The custom-agent path is especially broad, and task text is not shell-escaped for the receiving shell.

Background agents may keep running, editing files, or consuming local/cloud resources until the user notices and stops the tmux session.

Persistence is disclosed and central to the skill, but combined with autonomous coding agents it means work can continue beyond the immediate user interaction unless manually killed.

Using cloud agents may spend API credits and act under the credentials already configured for those CLI tools.

Cloud agent use is disclosed and purpose-aligned, but it relies on the user's existing CLI accounts or API billing context.

The actual behavior depends partly on locally installed agent CLIs that are not installed or pinned by this skill.

The skill invokes several external CLIs, while the declared install requirement only covers tmux. This is expected for the skill but leaves those tools' provenance and versions outside the reviewed artifacts.