from antigravity-awesome-skills38,396
Apply the STRIDE threat-modeling methodology to systematically identify and document security threats during design, reviews, or audits.
Apply the STRIDE methodology (Spoofing, Tampering, Repudiation, Information disclosure, Denial of service, Elevation of privilege) to systematically identify threats in systems. This skill guides an agent through clarifying goals and inputs, walking architecture components, mapping threats to STRIDE categories, and producing concise threat documentation and mitigation suggestions. It links to an implementation playbook when examples are required.
Use during threat-modeling sessions, architecture reviews, security design assessments, compliance preparation, or when training teams on systematic threat identification. Avoid using it for unrelated security tasks or non-STRIDE domains.
Works well with developer/security-focused agent toolchains such as Claude Code, Cursor, Codex CLI, and Gemini CLI — any agent that can read project files and produce structured documentation.
STRIDE threat modeling skill with clean SKILL.md frontmatter but extremely thin content — just generic boilerplate instructions with no concrete steps, output format, or examples. The real substance is referenced in resources/implementation-playbook.md but not bundled, making it a dead reference. An agent can't actually perform STRIDE analysis from this skill alone.
Low-effort skill with proper frontmatter but minimal actual content. The body provides no structured methodology, no threat categories, no output templates — just 'apply best practices'. The unbundled resource reference makes it non-functional as shipped.
