I also think that’s a big clown show. People think that LLMs accidentally get good with security patterns. That is not the case, they included all of that in the training data. They could also have left out the knowledge.
I tried installing it and it was a pain, if you don’t use the very very default scripts.
Also their scripts regenerate secrets and the setup is weird in general (you need a complicated rp configuration and scripts to generate the config files)
AFAIK eBPF can be hardware offloaded. If you have the use case.