vpn
Warn
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: MEDIUMCOMMAND_EXECUTIONCREDENTIALS_UNSAFEPROMPT_INJECTION
Full Analysis
- [Privilege Escalation] (MEDIUM): The skill provides instructions for installing system packages and managing services using commands that require administrative privileges, such as apt, yum, and systemctl. This is inherent to the skill's purpose but represents a significant capability tier.
- [Data Exposure & Exfiltration] (LOW): The skill includes configuration examples for ipsec.secrets with hardcoded placeholder credentials and demonstrates access to sensitive system directories like /etc/wireguard.
- [Indirect Prompt Injection] (LOW): The provided client management shell script (add-wg-client.sh) interpolates user-provided arguments into configuration files without sanitization, creating a surface for potential injection attacks through the script's inputs.
Audit Metadata