cloudflare-zero-trust

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.90). The prompt contains multiple examples and commands that explicitly instruct inserting tokens/secrets (e.g., , client secret, tunnel_secret, Authorization: Bearer ${API_TOKEN}) directly into CLI/API calls and browser automation flows, which would require the LLM to handle or emit secret values verbatim and thus poses an exfiltration risk.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 1.00). The prompt explicitly instructs installing and managing a system service (sudo cloudflared service install, sudo systemctl commands), editing/placing credentials under /etc, and running package installs with sudo/dpkg, which directs the agent to perform privileged system changes that modify the machine state.