deploying-tailscale-for-zero-trust-vpn

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The prompt repeatedly shows and instructs embedding pre-auth keys/auth tokens verbatim (e.g., TS_AUTHKEY, --authkey=tskey-auth-xxxxx, export TS_AUTHKEY=...), which requires the LLM/operator to handle and emit secret values directly.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 0.95). The skill explicitly instructs running privileged commands (sudo tailscale up, sudo mv, sudo mkdir, echo ... | sudo tee -a /etc/sysctl.conf), installing system daemons, and altering network/system configuration and capabilities (NET_ADMIN, /dev/net/tun), which modify host state and require elevated privileges.