threat-model:sno
OfficialMap SNO PRs to threats and mitigations
Authoropenshift-eng
Version1.0.0
Installs0
System Documentation
What problem does it solve?
SNO pull requests often need fast, structured security review, but translating code changes into threat models and actionable findings can be slow and inconsistent.
Core Features & Use Cases
- STRIDE/DFD-driven PR security analysis for SNO (Single Node OpenShift), focusing on SNO-specific trust boundaries and code paths.
- MITRE ATT&CK and OWASP mapping to convert observed security-relevant patterns into standardized technique and control references.
- Change-to-element reasoning by linking PR diffs to an SNO DFD element catalog (SNO-P1–P6, SNO-DS1–DS6, SNO-DF1–DF10).
- Findings tracker report output that appends a PR-scoped findings block to a SNO MITRE findings file for cumulative tracking.
- Use cases: reviewing installer/assisted-service changes for configuration tampering, validating credential-handling risks, and assessing bootstrap-in-place and single-member etcd exposure.
Quick Start
Run /threat-model:sno 10498 from within your workspace to analyze PR #10498 and produce an SNO threat report with MITRE/OWASP cross-references.
Dependency Matrix
Required Modules
None requiredComponents
references
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: threat-model:sno Download link: https://github.com/openshift-eng/edge-tooling/archive/main.zip#threat-model-sno Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.