pytm
About
pytm enables developers to create threat models as code using Python, automatically generating data flow diagrams and identifying STRIDE-based security threats. It integrates threat modeling into CI/CD pipelines for shift-left security practices. This skill is ideal for programmatically analyzing system architectures, producing threat reports with mitigations, and maintaining version-controlled threat models.
Quick Install
Claude Code
Recommendednpx skills add aiskillstore/marketplace -a claude-code/plugin add https://github.com/aiskillstore/marketplacegit clone https://github.com/aiskillstore/marketplace.git ~/.claude/skills/pytmCopy and paste this command in Claude Code to install this skill
GitHub Repository
Frequently asked questions
What is the pytm skill?
pytm is a Claude Skill by aiskillstore. Skills package instructions and resources that Claude loads on demand, so Claude can perform pytm-related tasks without extra prompting.
How do I install pytm?
Use the install commands on this page: add pytm to Claude Code as a plugin, or clone its repository into your skills directory, then restart Claude so it picks up the skill.
What category does pytm belong to?
pytm is in the threatmodel category, tagged threat-modeling, stride, dfd, security-architecture, pytm and appsec.
Is pytm free to use?
Yes. pytm is listed on AIMCP and free to install. It runs inside Claude, so no separate service account is required to use the skill itself.
Related Skills
pytm enables programmatic threat modeling in Python using the pytm library to automatically generate data flow diagrams and identify STRIDE-based security threats. It's ideal for integrating threat modeling into CI/CD pipelines, maintaining threat models as code, and producing actionable security reports. Developers should use it when they need to analyze system architectures for vulnerabilities across trust boundaries and shift security left in their development process.
This skill provides a production-tested setup for Content Collections, a TypeScript-first tool that transforms Markdown/MDX files into type-safe data collections with Zod validation. Use it when building blogs, documentation sites, or content-heavy Vite + React applications to ensure type safety and automatic content validation. It covers everything from Vite plugin configuration and MDX compilation to deployment optimization and schema validation.
This skill enables developers to build applications with the Polymarket prediction markets platform, including API integration for trading and market data. It also provides real-time data streaming via WebSocket to monitor live trades and market activity. Use it for implementing trading strategies or creating tools that process live market updates.
This skill helps developers create OpenCode plugins that hook into 25+ event types like commands, files, and LSP operations. It provides the plugin structure, event API specifications, and implementation patterns for JavaScript/TypeScript modules. Use it when you need to intercept, monitor, or extend the OpenCode AI assistant's lifecycle with custom event-driven logic.
