configuring-zscaler-private-access-for-ztna

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 0.80). The prompt includes examples that embed secrets directly (a provisioning key passed on the connector command line and an HEC token in log receiver config), which are insecure patterns that would require an agent to include secret values verbatim if those values were supplied.

MEDIUM W013: Attempt to modify system services in skill instructions.

• Attempt to modify system services in skill instructions detected (high risk: 1.00). The prompt explicitly instructs running sudo package installs, writing to /etc/apt/sources.list.d, configuring /opt services, and using systemctl to enable/start services—actions that modify system files and require elevated privileges, so it directs the agent to change the host state.