docs(firstboot): make the skip message honest about unsecured state

The '.secured' marker is written but not yet consumed by colibri, so the gate must not imply colibri/zot are blocked. Reword the skip message to state the node is UNSECURED and the agent SHOULD NOT register/run while unsecured — true as a policy statement, without claiming enforcement we haven't built. Upgrade to 'will not' once the colibri .secured interlock lands. Co-Authored-By: Claude Opus 4.8 <noreply@anthropic.com>
2026-06-25 06:08:14 +02:00 · 2026-06-25 06:08:14 +02:00 · e135c305a4
commit e135c305a4
parent f428bc7fcb
1 changed files with 3 additions and 1 deletions
--- a/live/operator-session/clawdie-firstboot-rootpw
+++ b/live/operator-session/clawdie-firstboot-rootpw
@ -140,7 +140,9 @@ clawdie_firstboot_rootpw_start() {
        printf '  Node secured.\n'
        _rootpw_continue_countdown 3
    else
-        printf '\n\n  [skipped] passwords NOT set — this node remains OPEN.\n'
+        printf '\n\n  [skipped] root/operator passwords NOT set — node is UNSECURED.\n'
+        printf '  Treat this node as untrusted until a password is set. The colibri\n'
+        printf '  agent should not register with mother or run tasks while unsecured.\n'
        printf '  You will be prompted again on the next boot.\n'
        _rootpw_continue_countdown 3
    fi