risk-prioritization-framework-for-engineers

Description

Risk prioritization framework for engineers. CVSS interpretation, exploitability analysis, blast radius calculation, and decision trees for patch management and vulnerability remediation.

AI Summary

Provides CVSS interpretation, exploitability analysis, and blast radius calculations to prioritize vulnerabilities. Use when you need to make patch-now vs patch-later decisions with limited resources.

Install

Add the repository(one-time)

/plugin marketplace add adaptive-enforcement-lab/claude-skills

Install the plugin

/plugin install secure@ael-skills

Tool Access

This skill inherits all available tools. When active, it can use any tool Claude has access to.

Skill Content

Risk Prioritization Framework for Engineers

When to Use This Skill

Most teams have an unlimited list of vulnerabilities but finite resources. The difference between effective security and security theater is how you make triage decisions.

This framework gives you:

Objective metrics to compare disparate vulnerabilities
Decision trees for patch-now vs patch-later choices
Cost-benefit analysis for remediation tradeoffs
Real-world examples with concrete decisions

The goal: Spend your security budget where exposure is highest.

Implementation

See the full implementation guide in the source documentation.

References

Links

GitHub Stats

0 forks

Updated 4 days ago

Similar Skills

gitops-workflow

2 files

Implement GitOps workflows with ArgoCD and Flux for automated, declarative Kubernetes deployments with continuous reconciliation. Use when implementing GitOps practices, automating Kubernetes deployments, or setting up declarative infrastructure management.

kubernetes-operations

24.8k

helm-chart-scaffolding

4 files

Design, organize, and manage Helm charts for templating and packaging Kubernetes applications with reusable configurations. Use when creating Helm charts, packaging Kubernetes applications, or implementing templated deployments.

kubernetes-operations

24.8k

k8s-manifest-generator

5 files

Create production-ready Kubernetes manifests for Deployments, Services, ConfigMaps, and Secrets following best practices and security standards. Use when generating Kubernetes YAML manifests, creating K8s resources, or implementing production-grade Kubernetes configurations.

kubernetes-operations

24.8k