Insecure Defaults Detection

🚀 Catch fail-open vulnerabilities where applications run insecurely with missing configuration. This skill detects when apps silently fall back to weak defaults (like hardcoded secrets or disabled security) instead of crashing safely. It distinguishes dangerous patterns from secure fail-safe designs that properly require configuration.

💡 Perfect for security audits, configuration reviews, and pre-deployment checks. Use it to scan production code, IaC templates, and deployment files for hardcoded credentials, weak crypto defaults, and insecure environment variable handling that could expose your application.

✨ Automatically filters out test fixtures, examples, and development-only code—focusing only on production-reachable vulnerabilities that matter.