Insecure Defaults Detection

Description

Detects fail-open insecure defaults (hardcoded secrets, weak auth, permissive security) that allow apps to run insecurely in production. Use when auditing security, reviewing config management, or analyzing environment variable handling.

Install

npx clawhub@latest install insecure-defaults

Click to copy the install command