Zum Hauptinhalt springen
Dieser Inhalt ist noch nicht in Ihrer Sprache verfügbar und wird auf Englisch angezeigt.

Insecure Defaults

Plugin Aktiv
Teil von:Trailofbits

Detects insecure default configurations including hardcoded credentials, fallback secrets, weak authentication defaults, and dangerous values in production

1 Skill 0 MCPs
Zweck

To help developers and security auditors proactively identify and mitigate risks associated with insecure default configurations before they can be exploited.

Funktionen

  • Detects hardcoded fallback secrets
  • Identifies default credentials and weak authentication
  • Flags weak cryptographic defaults
  • Analyzes permissive access control configurations
  • Distinguishes fail-open from fail-secure behaviors

Anwendungsfälle

  • Conducting security audits on production applications
  • Reviewing deployment manifests (Docker, Kubernetes, IaC)
  • Performing pre-production checks for security misconfigurations
  • Analyzing environment variable handling for secrets management

Nicht-Ziele

  • Detecting vulnerabilities in test fixtures or example files
  • Analyzing development-only tools or build-time configurations
  • Scanning documentation files for security issues
  • Identifying 'fail-secure' patterns where applications crash safely

Trust

  • warning:Issues Attention13 issues opened, 4 closed in the last 90 days, indicating a low closure rate and potential for slow maintainer response.

Installation

Zuerst Marketplace hinzufügen

/plugin marketplace add trailofbits/skills
/plugin install insecure-defaults@trailofbits

Enthält 1 Erweiterungen

Skill (1)

Insecure Defaults Skill

Detects fail-open insecure defaults (hardcoded secrets, weak auth, permissive security) that allow apps to run insecurely in production. Use when auditing security, reviewing config management, or analyzing environment variable handling.

75

Qualitätspunktzahl

85 /100
Analysiert about 16 hours ago

Vertrauenssignale

Letzter Commit3 days ago
GitHub-Inhaber trailofbits (opens in new tab)
Sterne5.2k
LizenzCC-BY-SA-4.0
Status
Quellcode ansehen

Ähnliche Erweiterungen

Dotforge Stack Python Fastapi

100

Python 3.12+ with FastAPI, async/await, type hints, and Ruff linting rules for Claude Code.

Plugin
luiseiman

Dotforge

100

Node.js 20+ with Express/Fastify, TypeScript, and ESM module rules for Claude Code.

Plugin
luiseiman

C4 Architecture

99

Comprehensive C4 architecture documentation workflow with bottom-up code analysis, component synthesis, container mapping, and context diagram generation

Plugin
wshobson

Dimensional Analysis

99

Annotates codebases with dimensional analysis comments documenting units, dimensions, and decimal scaling. Use when someone asks to annotate units in a codebase, perform a dimensional analysis, or find vulnerabilities in a DeFi protocol. Prevents dimensional mismatches and catches formula bugs early.

Plugin
trailofbits

Ruflo Knowledge Graph

99

Knowledge graph construction — entity extraction, relation mapping, and pathfinder graph traversal

Plugin
ruvnet

Credential Guard

98

Schützt Geheimnisse und Anmeldeinformationen vor Claude Code. Blockiert Schreibvorgänge in .env-Dateien, erkennt API-Schlüssel in Shell-Befehlen, verhindert hartcodierte Token und schützt Service-Konto-JSON-Dateien.

Plugin
yurukusa