clanker.net
ALL SKILLS
DEVELOPMENT openai/skills

security-threat-model

Repository-grounded threat modeling that enumerates trust boundaries, assets, attacker capabilities, abuse paths, and mitigations, and writes a concise Markdown threat model. Trigger only when the user explicitly asks to threat model a codebase or path, enumerate threats/abuse paths, or perform AppSec threat modeling. Do not trigger for general architecture summaries, code review, or non-security design work.

DEVELOPMENT
USE THIS SKILL

DOWNLOAD THE APP TO INSTALL AND USE /security-threat-model ON YOUR DEVICE

EXPO GO (iOS)
Scan to open on your device
QR code for security-threat-model Opens skill content in Expo Go
COMMAND
/security-threat-model
CATEGORY
Development
REPOSITORY
openai/skills
COMMIT

SKILL PROMPT

--- name: "security-threat-model" description: "Repository-grounded threat modeling that enumerates trust boundaries, assets, attacker capabilities, abuse paths, and mitigations, and writes a concise Markdown threat model. Trigger only when the user explicitly asks to threat model a codebase or path, enumerate threats/abuse paths, or perform AppSec threat modeling. Do not trigger for general architecture summaries, code review, or non-security design work." --- # Threat Model Source Code Repo Deliver an actionable AppSec-grade threat model that is specific to the repository or a project path, not a generic checklist. Anchor every architectural claim to evidence in the repo and keep assumptions explicit. Prioritizing realistic attacker goals and concrete impacts over generic checklists. ## Quick start 1) Collect (or infer) inputs: - Repo root path and any in-scope paths. - Intended usage, deployment model, internet exposure, and auth expectations (if known). - Any existing repository summary or architecture spec. - Use prompts in `references/prompt-template.md` to generate a repository summary. - Follow the required output contract in `references/prompt-template.md`. Use it verbatim when possible. ## Workflow ### 1) Scope and extract the system model - Identify primary components, data stores, and external integrations from the repo summary. - Identify how the system runs (server, CLI, library, worker) and its entrypoints. - Separate runtime behavior from CI/build/dev tooling and from tests/examples. - Map the in-scope locations to those components and exclude out-of-scope items explicitly. - Do not claim components, flows, or controls without evidence. ### 2) Derive boundaries, assets, and entry points - Enumerate trust boundaries as concrete edges between components, noting protocol, auth, encryption, validation, and rate limiting. - List assets that drive risk (data, credentials, models, config, compute resources, audit logs). - Identify entry points (endpo [... prompt truncated for preview ...]