Skip to main content

insecure-defaults

Identifies insecure defaults in applications, enhancing security audits and configuration reviews to prevent vulnerabilities in production environments.

Install this skill

or
94/100

Security score

The insecure-defaults skill was audited on Feb 12, 2026 and we found 2 security issues across 1 threat category. Review the findings below before installing.

Categories Tested

Security Issues

medium line 55

Access to .env file

SourceSKILL.md
55- **Fallback secrets:** `getenv.*\) or ['"]`, `process\.env\.[A-Z_]+ \|\| ['"]`, `ENV\.fetch.*default:`
low line 84

Access to .env file

SourceSKILL.md
84Pattern: const secret = process.env.JWT_SECRET || 'default';
Scanned on Feb 12, 2026
View Security Dashboard
Installation guide →
GitHub Stars 106
Rate this skill
Categorydevelopment
UpdatedMay 21, 2026
openclawbackendsecurity-engineerdevops-srebackend-developerdevelopment
majiayu000/claude-skill-registry