x-cmd
PassAudited by ClawScan on May 1, 2026.
Overview
x-cmd is a disclosed CLI/package-management helper, but installing or using it can download and run software and alter your shell PATH, so approve those actions deliberately.
This skill is reasonable if you want x-cmd package-management features. Before installing, prefer Homebrew or a manually reviewed installer, avoid curl-to-shell in sensitive environments, and do not let the agent install packages unless the package and purpose are clear.
Findings (3)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If this install path is used, code from the remote installer runs on the user's machine before the user can inspect it.
The install guide documents a remote shell install path and explicitly labels it high risk. This is purpose-aligned for installing a CLI tool, but it carries normal supply-chain risk.
curl -fsSL https://get.x-cmd.com | sh ... WARNING: This executes remote code without manual review.
Prefer the documented Homebrew method or the manual download-and-review method, and avoid curl-to-shell installation in sensitive environments.
The agent could use x-cmd to add local executable tools, which may affect later commands in the same environment.
The skill exposes broad package installation commands. This matches the stated package-management purpose, but package choices should remain user-directed.
`x env use <pkg>` | Install and use a package (downloads to x-cmd local bin)
Only allow package installation for packages you recognize and actually need for the task.
Commands run after loading x-cmd may resolve to tools installed by x-cmd or pixi.
Sourcing the x-cmd loader executes local shell code and changes PATH. This is expected for a shell tool manager, but it affects the agent's command environment.
Load x-cmd first: `. ~/.x-cmd.root/X` ... packages in x-cmd/pixi's local bin will be automatically available in PATH.
Load x-cmd only after installing it from a trusted method, and verify PATH behavior if working in a sensitive shell session.