Summary
This is a comprehensive STRIDE-A threat modeling skill that can either analyze a repository from scratch or incrementally update an existing threat model. It generates architecture diagrams, DFDs, prioritized findings with CVSS scores, and executive assessments. The incremental mode is especially practical: point it at a previous report and it will show you what threats were introduced, fixed, or still present since the baseline, complete with an HTML diff. It follows Zero Trust principles, flags secrets and trust boundary violations, and maps findings to OWASP Top 10 and CWE. The documentation is thorough, maybe overly so, with separate reference files for diagram conventions, analysis principles, and verification checklists. If you need structured security reviews that persist across commits rather than one-off audits, the incremental workflow is the real value here.
Install to Claude Code
npx -y skills add github/awesome-copilot --skill threat-model-analyst --agent claude-codeInstalls into .claude/skills of the current project.
Keep your Mac awake while Claude Code and 40+ AI agents run. Sleeps when they're idle.
One time payment $9 →
Integrate web data into your AI product. One API to scrape website & brand data.
Get API Key Now →
Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →
On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →
Files
SKILL.md
Select a file.
Featured
Keep your Mac awake while Claude Code and 40+ AI agents run. Sleeps when they're idle.
One time payment $9 →Integrate web data into your AI product. One API to scrape website & brand data.
Get API Key Now →Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →
