security-insecure-defaults
Pass
Audited by Gen Agent Trust Hub on Mar 30, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is a legitimate security utility intended to help developers identify and remediate insecure default configurations in web frameworks, databases, and cloud infrastructure.
- [COMMAND_EXECUTION]: The skill uses local shell commands (grep) to scan configuration files for specific patterns such as debug modes, default secret keys, and overly permissive network bindings. These actions are transparent and aligned with the skill's documented purpose.
- [DATA_EXFILTRATION]: No network operations, external downloads, or data exfiltration patterns were detected. All analysis is performed locally on the provided file system.
- [PROMPT_INJECTION]: The skill does not contain instructions that attempt to override system prompts, bypass safety filters, or use role-playing techniques to gain unauthorized access or behavior.
Audit Metadata