ai-threat-modeler

Community

Map AI risks before they ship.

Authornguyenpv1980-wq
Version1.0.0
Installs0

System Documentation

What problem does it solve?

This Skill produces a design-time threat model for an AI feature so teams can identify what could go wrong before an LLM, RAG pipeline, or agent reaches production.

Core Features & Use Cases

  • AI-Specific Risk Inventory: Identifies model calls, retrieval paths, tool use, prompts, credentials, and other AI assets that expand the attack surface.
  • Trust Boundary Analysis: Marks every untrusted input source, including tickets, emails, webpages, logs, tool outputs, and prior model outputs.
  • OWASP LLM Top 10 Coverage: Enumerates threats and abuse cases across prompt injection, disclosure, poisoning, output handling, excessive agency, prompt leakage, vector weaknesses, misinformation, and unbounded consumption.
  • Mitigation Mapping: Assigns each accepted risk to an owning skill and a proof case so defenses are actionable and testable.
  • Use Case: A team is adding a support agent that reads customer tickets, searches a knowledge base, and can issue refunds; this Skill helps model the AI risks before the design is built.

Quick Start

Use the ai-threat-modeler skill to assess the AI system’s assets, trust boundaries, OWASP LLM Top 10 threats, abuse cases, and mitigations before implementation.

Dependency Matrix

Required Modules

None required

Components

references

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: ai-threat-modeler
Download link: https://github.com/nguyenpv1980-wq/Project-Aegis/archive/main.zip#ai-threat-modeler

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 545,000+ vetted skills library on demand.