Config Hardening
Purpose
Harden configuration and defaults for safer deployment.
Inputs to request
- •Current configuration defaults.
- •Environment and deployment model.
- •Security requirements and threat model.
Workflow
- •Audit environment variables and defaults.
- •Recommend safer defaults and validation.
- •Identify secrets and rotate if exposed.
Output
- •Config hardening checklist.
Quality bar
- •Avoid breaking changes without migration notes.
- •Call out secret handling explicitly.