Skills
.Work. You
Rest

Insecure Defaults Detection

Community

Detect insecure defaults and hardcoded secrets.

Software Engineering#devops#config#credentials#security-audit#defaults#hardcoded#insecure
AuthorBasharAmso
Version1.0.0
Installs0

System Documentation

What problem does it solve?

Insecure defaults and hardcoded credentials in configuration and code create hidden attack surfaces that survive deployments. This Skill identifies these weaknesses to reduce risk and expedite remediation.

Core Features & Use Cases

  • Scan configuration files (.env, config/*.json, YAML, etc.) for insecure defaults and secret leakage.
  • Flag hardcoded credentials and default accounts, with redacted reporting to prevent exposure.
  • Generate an audit STATE.md with prioritized findings to guide fixes across CI setups and deployments.
  • Use cases include pre-production security audits, code reviews, and automated security gates in CI.

Quick Start

Run a fast audit against your project to locate insecure defaults and secrets.

Dependency Matrix

Required Modules

None required

Components

Standard package

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: Insecure Defaults Detection
Download link: https://github.com/BasharAmso/Bashi/archive/main.zip#insecure-defaults-detection

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.