Use Case
Insecure Defaults Detection isn't just for solo use β teams can share skills and build consistent AI workflows across the organization. Detects fail-open insecure defaults (hardcoded secrets, weak auth, permissive security) that allow apps to run insecurely in production. Use when auditing security, reviewing config management, or analyzing environment variable handling. This guide covers how to deploy Insecure Defaults Detection for your team, standardize prompts, and create shared workflows that everyone can use.
Install Insecure Defaults Detection in your project directory: .claude/skills/insecure-defaults/
Commit the skill folder to your repository so the whole team has access
Document your team's standard prompts in a shared README
Use Insecure Defaults Detection in code reviews, standups, and planning sessions
Iterate: collect feedback from the team and refine your prompts
Copy these prompts and use them with your AI agent after installing Insecure Defaults Detection
How can my team use Insecure Defaults Detection together?
Set up Insecure Defaults Detection for our project so everyone can use it
Create a shared workflow using Insecure Defaults Detection for our team
Select your agent
Option 1: Install via CLI (recommended)
Recommended (no pre-install needed)
npx clawhub@latest --dir ~/.claude/skills install insecure-defaultsOr via clawhub CLI (if already installed)
clawhub --dir ~/.claude/skills install insecure-defaultsβ οΈ Requires Node.js 18+. No Node? Use Option 2 below to download the ZIP instead. Install Node.js β
Option 2: Manual install (no Node required)
Download the ZIP, extract it, and place the folder at the path below. Restart your agent to activate.
Install path
~/.claude/skills/insecure-defaults/π‘Extract and place the folder at the path above, then restart your agent.