보안 Threat 모델
원문: security-threat-model
Repository-grounded threat modeling that enumerates trust boundaries, assets, attacker capabilities, abuse paths, and mitigations, and writes a concise Markdown threat model. Trigger only when the user explicitly asks to threat model a codebase or path, enumerate threats/abuse pa
무엇을 하나요
Threat Model Source Code Repo Deliver an actionable AppSec grade threat model that is specific to the repository or a project path, not a generic checklist. Anchor every architectural claim to evidence in the repo and keep assumptions explicit. Prioritizing realistic attacker goals and concrete impacts over generic checklists. Quick start 1) Collect (or infer) inputs: Repo root path and any in scope paths. Intended usage, deployment model, internet exposure, and auth expectations (if known). Any existing repository summary or architecture spec. Use prompts in references/prompt template.md to generate a repository summary. Follow the required output contract in references/prompt template.md .…
실행 시 본인 API 키(BYOK)로 동작하며, 모델 비용은 사용자 계정에서 직접 결제됩니다.