Intent-Code Divergence
Medium
- Confidence
- 96% confidence
- Finding
- The documented primary install command passes the Wazuh registration password as an MSI property on the command line, which can expose the secret through process listings, guest-agent logs, shell history, audit telemetry, or Proxmox task/API traces. Although surrounding text warns not to do this, operators commonly copy the main example verbatim, so the example itself materially increases the chance of credential disclosure.
