Missing User Warnings
High
- Confidence
- 96% confidence
- Finding
- The documentation explicitly promotes executing arbitrary commands and deploying updates across all VPS, yet it provides no strong warning, guardrails, approval step, or limitation on destructive operations. In a fleet-management context, this greatly amplifies the blast radius of mistakes, prompt injection, or misuse, allowing a single unsafe command to disrupt multiple servers or services at once.
