openvpn
Pass
Audited by Gen Agent Trust Hub on Mar 13, 2026
Risk Level: SAFECOMMAND_EXECUTIONPROMPT_INJECTIONCREDENTIALS_UNSAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill executes system-level commands to install packages (openvpn, easy-rsa, iptables-persistent, libpam-google-authenticator), manage system services via systemctl, and configure network settings using iptables and sysctl. These operations are required for the primary purpose of setting up a VPN server.
- [PROMPT_INJECTION]: The skill identifies a potential surface for indirect prompt injection in the client provisioning process. 1. Ingestion points: User-provided client names (e.g., 'alice', 'bob') in example prompts. 2. Boundary markers: No delimiters or ignore instructions are present in the provided profile generation script. 3. Capability inventory: Includes file reading, file writing, and system command execution. 4. Sanitization: The provided script does not perform validation on the client name variable, which could lead to path traversal if malformed input is processed.
- [CREDENTIALS_UNSAFE]: The skill manages sensitive cryptographic materials, including CA and server private keys. It automates the creation of client profiles that embed these credentials, which is consistent with the skill's networking and security management role.
Audit Metadata