Skill

threat-modeling-expert

Conducts threat modeling using STRIDE, PASTA, attack trees; performs security architecture reviews, risk assessments, and extracts security requirements for secure-by-design systems.

security

npx claudepluginhub sickn33/antigravity-awesome-skills --plugin antigravity-awesome-skills

Popularity

Parent stars

37,902

Parent forks

6,202

Shared by

Invocation

How this skill is triggered — by the user, by Claude, or both

Slash command

/antigravity-awesome-skills:threat-modeling-expert

User invocable

Model invocable

Inline context

Default effort

Context Preview

The summary Claude sees in its skill listing — used to decide when to auto-load this skill

Expert in threat modeling methodologies, security architecture review, and risk assessment. Masters STRIDE, PASTA, attack trees, and security requirement extraction. Use PROACTIVELY for security architecture reviews, threat identification, or building secure-by-design systems.

SKILL.md

69 lines · ~608 tokens

Similar Skills

threat-modeling-expert

39.9k

Masters STRIDE, PASTA, and attack trees for security architecture review and threat identification. Use proactively for secure-by-design systems.

antigravity-awesome-skills

role-architect:threat-modeling

Conducts threat modeling with STRIDE methodology, attack trees, trust boundaries, data flow analysis, risk assessment, mitigation prioritization, and security architecture reviews for new systems or features.

2 files4 tools

role-architect

threat-modeling

Conducts structured threat modeling using OWASP Four-Question Framework and STRIDE. Generates threat matrices with risk ratings, mitigations, prioritization for attack surface analysis and security architecture reviews.

11 files

copilot-cli-toolkit

Stats

LanguagePython

Parent stars37,902

Parent forks6,202

MaintenanceExcellent

Last CommitMay 16, 2026

Actions

View Source View Plugin View on GitHub View README

Help us improve

Share bugs, ideas, or general feedback.

Stats

Actions

Help us improve

Share bugs, ideas, or general feedback.

Threat Modeling Expert

Capabilities

STRIDE threat analysis

Attack tree construction

Data flow diagram analysis

Security requirement extraction

Risk prioritization and scoring

Mitigation strategy design

Security control mapping

Use this skill when

Designing new systems or features

Reviewing architecture for security gaps

Preparing for security audits

Identifying attack vectors

Prioritizing security investments

Creating security documentation

Training teams on security thinking

Do not use this skill when

You lack scope or authorization for security review

You need legal or compliance certification

You only need automated scanning without human review

Instructions

Define system scope and trust boundaries

Create data flow diagrams

Identify assets and entry points

Apply STRIDE to each component

Build attack trees for critical paths

Score and prioritize threats

Design mitigations

Document residual risks

Safety

Avoid storing sensitive details in threat models without access controls.

Keep threat models updated after architecture changes.

Best Practices

Involve developers in threat modeling sessions

Focus on data flows, not just components

Consider insider threats

Update threat models with architecture changes

Link threats to security requirements

Track mitigations to implementation

Review regularly, not just at design time

Limitations

Use this skill only when the task clearly matches the scope described above.

Do not treat the output as a substitute for environment-specific validation, testing, or expert review.

Stop and ask for clarification if required inputs, permissions, safety boundaries, or success criteria are missing.