Wi-Fi Sense is a huge security hole, and even if you don't have windows 10, if anyone you trust with access to your network upgrades to windows 10, that person becomes a security problem for you.
Obvious solution is to use a strong generated string for your password (so even if they get your password, they're not getting the password to anything else), and then configure your router to require each device connecting to be authenticated. Whitelist for MAC addresses + GPG + ?
Hm. I'm genuinely curious - does it share passwords (as typed in) or actual PSKs?
That is, if I'd only let guests with Windows 10 to access network using WPS, would Wi-Fi Sense send negotiated secret or not?
(I suppose WPA2-EAP-PSK should also be an option - IIRC Windows supports 802.1x auth and I doubt they share those passwords... although not many SOHO routers know anything about RADIUS)
Obvious solution is to use a strong generated string for your password (so even if they get your password, they're not getting the password to anything else), and then configure your router to require each device connecting to be authenticated. Whitelist for MAC addresses + GPG + ?