threat-modeling-framework

This skill helps developers implement data privacy measures by detecting PII, masking sensitive data, and managing consent or encryption. Use it when designing or updating systems that require security and compliance with data protection standards. It provides structured plans and artifacts to ensure proper handling of private information.

This Claude Skill scans container images and runtime environments for CVEs and policy violations. It helps developers address security and compliance requirements during design and implementation. Use it when you need to produce security plans, configurations, and validation steps for containerized systems.

This skill helps developers design RBAC/ABAC policies and permission boundaries for security and compliance. It guides you through clarifying requirements, reviewing system context, and selecting appropriate patterns to produce implementation plans and artifacts. Use it when you need to establish or audit access controls within a defined architecture and stack.

The `api-security-enforcer` skill helps developers design and implement core API security controls. It provides a structured process to apply rate limiting, input validation, and injection defenses within a given system's architecture and constraints. Use this skill when planning or reviewing security measures for API endpoints to ensure compliance and mitigate common threats.