Skills
skills/aradotso/security-skills/edgesecurityaccess-wireguard-vpn/Gen Agent Trust Hub

edgesecurityaccess-wireguard-vpn

Fail

Audited by Gen Agent Trust Hub on May 29, 2026

Risk Level: HIGHCREDENTIALS_UNSAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONREMOTE_CODE_EXECUTION
Full Analysis
  • [CREDENTIALS_UNSAFE]: The skill instructs the user to store usernames and passwords in a plaintext file at /etc/esa/users.txt. This exposes sensitive credentials to any user or process with read access to the file system.
  • [EXTERNAL_DOWNLOADS]: The skill downloads source code from an external GitHub repository (github.com/KochiyaSanaeNya/EdgeSecurityAccess.git) that is not associated with the skill author or any established trusted organizations.
  • [COMMAND_EXECUTION]: The setup process requires numerous high-privilege shell commands, including iptables for NAT configuration, sysctl for kernel parameter modification, and systemctl for service management. These actions modify critical system settings and require root privileges.
  • [REMOTE_CODE_EXECUTION]: The installation instructions involve cloning a remote repository followed by the compilation and execution of multiple Go and C binaries. This pattern allows for the execution of arbitrary code from an unverified external source on the host system.
Recommendations
  • AI detected serious security threats
Audit Metadata
Risk Level
HIGH
Analyzed
May 29, 2026, 05:16 PM
Security Audit — agent-trust-hub — edgesecurityaccess-wireguard-vpn