Audit code threats with STRIDE+OWASP
securityskillsetup L2★0
vanducng/skills ↗What it does
Audit code using STRIDE and OWASP threat models
Best for
Threat-modeled vulnerability discovery using attacker personas and STRIDE.
Inputs
- · <scope glob or
- · scope glob or 'full', optional flags
Outputs
- · markdown report with findings
- · step-by-step execution plan
- · enumerated list
Requires
- · Workflow tool
- · git
Preconditions
- · specify target scope or glob
- · operate within git repository
- · provide auth credentials or tokens
Failure modes
- · single perspective may overlook alternatives
Trust signals
- · MIT/OSS license
- · named author with version
- · includes test guidance
- · comprehensive reference documentation