← Back to Skills Marketplace
solomonneas

S³ Threat Modeling

by Solomon Neas · GitHub ↗ · v1.0.0 · MIT-0
cross-platform ✓ Security Clean
165
Downloads
0
Stars
0
Active Installs
1
Versions
Install in OpenClaw
/install s3-threat-modeling
Description
Expert in threat modeling methodologies, security architecture review, and risk assessment. Masters STRIDE, PASTA, attack trees, and security requirement ext...
Usage Guidance
This skill is coherent and low-risk: it only provides guidance for threat modeling and asks users to supply architecture/context. Before using it, don't paste secrets, private keys, or full production configs—redact sensitive details. Verify you have authorization to share any internal architecture. Because the skill's publisher and homepage are not provided, prefer using it for general guidance or in non-sensitive reviews until you can confirm provenance or use an internal security reviewer for critical systems.
Capability Analysis
Type: OpenClaw Skill Name: s3-threat-modeling Version: 1.0.0 The skill bundle consists solely of metadata and documentation (SKILL.md) defining a 'Threat Modeling Expert' persona. It contains no executable code, network activity, or malicious instructions, and its content is strictly limited to standard security methodologies like STRIDE and PASTA.
Capability Assessment
Purpose & Capability
Name/description (threat modeling, STRIDE, PASTA, attack trees) match the SKILL.md steps and capabilities. The skill does not request unrelated binaries, credentials, or config paths. Minor provenance note: source/homepage are missing, so author identity is unknown but this does not make the content incoherent.
Instruction Scope
SKILL.md contains high-level, well-scoped threat-modeling steps (define scope, DFDs, STRIDE, attack trees, score/prioritize, mitigations). It does not instruct the agent to read system files, environment variables, or send data to external endpoints. It naturally expects the user to provide architecture info, which is appropriate for its purpose.
Install Mechanism
No install spec and no code files (instruction-only). This is the lowest-risk model — nothing will be written to disk or auto-installed by the skill.
Credentials
No environment variables, credentials, or config paths are required. The absence of secrets is proportionate to an advisory/expert skill.
Persistence & Privilege
always is false and the skill is user-invocable. It can be invoked autonomously (platform default) but it does not request elevated or persistent privileges or attempt to modify other skills or system settings.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install s3-threat-modeling
  3. After installation, invoke the skill by name or use /s3-threat-modeling
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.0.0
Initial release of the Threat Modeling Expert skill. - Provides expert guidance in threat modeling methodologies including STRIDE, PASTA, attack trees, and security requirement extraction. - Supports security architecture reviews, risk assessment, and secure-by-design planning. - Includes clear instructions and best practices for conducting threat modeling and risk assessments. - Details scenarios for effective use and outlines limitations and safety considerations.
Metadata
Slug s3-threat-modeling
Version 1.0.0
License MIT-0
All-time Installs 0
Active Installs 0
Total Versions 1
Frequently Asked Questions

What is S³ Threat Modeling?

Expert in threat modeling methodologies, security architecture review, and risk assessment. Masters STRIDE, PASTA, attack trees, and security requirement ext... It is an AI Agent Skill for Claude Code / OpenClaw, with 165 downloads so far.

How do I install S³ Threat Modeling?

Run "/install s3-threat-modeling" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is S³ Threat Modeling free?

Yes, S³ Threat Modeling is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does S³ Threat Modeling support?

S³ Threat Modeling is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created S³ Threat Modeling?

It is built and maintained by Solomon Neas (@solomonneas); the current version is v1.0.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463556 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259610 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200551 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191226 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190235 · by oswalpalash

💬 Comments