security-threat-model
Installation
SKILL.md
Security Threat Model
Purpose
Use this skill before implementing or approving security-sensitive changes. It complements auth-security and server-security by mapping assets, attackers, trust boundaries, and concrete controls.
Scope First
Identify:
- Assets: credentials, tokens, user data, tenant data, money movement, admin actions.
- Actors: anonymous user, authenticated user, tenant admin, internal operator, compromised dependency.
- Trust boundaries: browser/server, service/service, tenant/tenant, CI/runtime, third-party callbacks.
- Entry points: API routes, CLI commands, jobs, webhooks, uploads, config files.
- Existing controls: validation, authz, rate limits, audit logs, secret storage.
Threat Checklist
Check at least: