Insecure Defaults

by Trail of Bits OrgOfficialSkill · in Security Research

Low Risk

Detects fail-open insecure defaults — hardcoded secrets, weak authentication, and permissive security configurations that allow apps to run insecurely in production.

Pending Review

This skill has been submitted and is awaiting security assessment.

Required Permissions

File System (Read)

trailofbits/skills/tree/main/plugins/insecure-defaults/skills/insecure-defaults

Repository data will be available after the next enrichment run.

Trail of Bits (Org) Official MIT Pending Review

Similar Skills

Semgrep Scanner

Skill Security Research

Medium

Runs Semgrep static analysis with parallel subagents — full ruleset and high-confidence security scan modes with Semgrep Pro cross-file taint analysis.

Semgrep Subagent

MIT 3 permissions

CodeQL

Skill Security Research

Medium

Scans codebases for security vulnerabilities using CodeQL interprocedural data flow and taint tracking — supports full and important-only scan modes.

MIT 2 permissions

Atheris Python Fuzzer

Skill Security Research

Medium

Coverage-guided Python fuzzer based on libFuzzer — fuzzing pure Python code and Python C extensions.

Fuzzing Python

MIT 1 permission