deploying-cloudflare-access-for-zero-trust

Enables secure access to applications using Cloudflare Tunnel, implementing zero trust architecture for enhanced cybersecurity.

Install this skill

or

0/100

Security score

The deploying-cloudflare-access-for-zero-trust skill was audited on Jun 4, 2026 and we found 39 security issues across 4 threat categories. Review the findings below before installing.

Categories Tested

Security Issues

medium line 119

Template literal with variable interpolation in command context

SourceSKILL.md

119

```bash

medium line 158

Template literal with variable interpolation in command context

SourceSKILL.md

158

```bash

medium line 209

Template literal with variable interpolation in command context

SourceSKILL.md

209

```bash

medium line 262

Template literal with variable interpolation in command context

SourceSKILL.md

262

```bash

medium line 306

Template literal with variable interpolation in command context

SourceSKILL.md

306

```bash

medium line 121

Curl to non-GitHub URL

SourceSKILL.md

121	curl -X PUT "https://api.cloudflare.com/client/v4/accounts/{account_id}/access/identity_providers" \

medium line 138

Curl to non-GitHub URL

SourceSKILL.md

138	curl -X POST "https://api.cloudflare.com/client/v4/accounts/{account_id}/access/identity_providers" \

medium line 160

Curl to non-GitHub URL

SourceSKILL.md

160	curl -X POST "https://api.cloudflare.com/client/v4/accounts/{account_id}/access/apps" \

medium line 176

Curl to non-GitHub URL

SourceSKILL.md

176	curl -X POST "https://api.cloudflare.com/client/v4/accounts/{account_id}/access/apps/{app_id}/policies" \

medium line 193

Curl to non-GitHub URL

SourceSKILL.md

193	curl -X POST "https://api.cloudflare.com/client/v4/accounts/{account_id}/access/apps" \

medium line 211

Curl to non-GitHub URL

SourceSKILL.md

211	curl -X POST "https://api.cloudflare.com/client/v4/accounts/{account_id}/devices/policy" \

medium line 249

Curl to non-GitHub URL

SourceSKILL.md

249	curl -X PUT "https://api.cloudflare.com/client/v4/accounts/{account_id}/devices/policy/{policy_id}/fallback_domains" \

medium line 264

Curl to non-GitHub URL

SourceSKILL.md

264	curl -X POST "https://api.cloudflare.com/client/v4/accounts/{account_id}/devices/posture/integration" \

medium line 280

Curl to non-GitHub URL

SourceSKILL.md

280	curl -X POST "https://api.cloudflare.com/client/v4/accounts/{account_id}/devices/posture" \

medium line 291

Curl to non-GitHub URL

SourceSKILL.md

291	curl -X POST "https://api.cloudflare.com/client/v4/accounts/{account_id}/devices/posture" \

medium line 308

Curl to non-GitHub URL

SourceSKILL.md

308	curl -X POST "https://api.cloudflare.com/client/v4/accounts/{account_id}/logpush/jobs" \

medium line 323

Curl to non-GitHub URL

SourceSKILL.md

323	curl -X POST "https://api.cloudflare.com/client/v4/graphql" \

low line 82

Access to hidden dotfiles in home directory

SourceSKILL.md

82	cat > ~/.cloudflared/config.yml << 'EOF'

low line 88

External URL reference

SourceSKILL.md

88	service: http://localhost:8080

low line 90

External URL reference

SourceSKILL.md

90	service: http://10.1.1.50:3000

low line 92

External URL reference

SourceSKILL.md

92	service: http://10.1.1.60:3000

low line 121

External URL reference

SourceSKILL.md

121	curl -X PUT "https://api.cloudflare.com/client/v4/accounts/{account_id}/access/identity_providers" \

low line 138

External URL reference

SourceSKILL.md

138	curl -X POST "https://api.cloudflare.com/client/v4/accounts/{account_id}/access/identity_providers" \

low line 160

External URL reference

SourceSKILL.md

160	curl -X POST "https://api.cloudflare.com/client/v4/accounts/{account_id}/access/apps" \

low line 171

External URL reference

SourceSKILL.md

171	"logo_url": "https://company.com/wiki-logo.png",

low line 176

External URL reference

SourceSKILL.md

176	curl -X POST "https://api.cloudflare.com/client/v4/accounts/{account_id}/access/apps/{app_id}/policies" \

low line 193

External URL reference

SourceSKILL.md

193	curl -X POST "https://api.cloudflare.com/client/v4/accounts/{account_id}/access/apps" \

low line 211

External URL reference

SourceSKILL.md

211	curl -X POST "https://api.cloudflare.com/client/v4/accounts/{account_id}/devices/policy" \

low line 220

External URL reference

SourceSKILL.md

220	"support_url": "https://helpdesk.company.com/warp-help"

low line 224

External URL reference

SourceSKILL.md

224	# Download: https://developers.cloudflare.com/cloudflare-one/connections/connect-devices/warp/download-warp/

low line 228

External URL reference

SourceSKILL.md

228	<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">

low line 244

External URL reference

SourceSKILL.md

244	# Download from: https://developers.cloudflare.com/cloudflare-one/connections/connect-devices/warp/user-side-certificates/

low line 249

External URL reference

SourceSKILL.md

249	curl -X PUT "https://api.cloudflare.com/client/v4/accounts/{account_id}/devices/policy/{policy_id}/fallback_domains" \

low line 264

External URL reference

SourceSKILL.md

264	curl -X POST "https://api.cloudflare.com/client/v4/accounts/{account_id}/devices/posture/integration" \

low line 271

External URL reference

SourceSKILL.md

271	"api_url": "https://api.crowdstrike.com",

low line 280

External URL reference

SourceSKILL.md

280	curl -X POST "https://api.cloudflare.com/client/v4/accounts/{account_id}/devices/posture" \

low line 291

External URL reference

SourceSKILL.md

291	curl -X POST "https://api.cloudflare.com/client/v4/accounts/{account_id}/devices/posture" \

low line 308

External URL reference

SourceSKILL.md

308	curl -X POST "https://api.cloudflare.com/client/v4/accounts/{account_id}/logpush/jobs" \

low line 323

External URL reference

SourceSKILL.md

323	curl -X POST "https://api.cloudflare.com/client/v4/graphql" \

Scanned on Jun 4, 2026

View Security Dashboard

Installation guide →

GitHub Stars 2

Rating

4.01

Rate this skill

Categorydevelopment

UpdatedJune 13, 2026

openclaw api devops security-engineer it-operations devops-sre development operations

KunanonJ/claude-skills-hub