Does it support standard security frameworks?

Yes, it includes built-in mappings for major frameworks including OWASP, NIST CSF, PCI DSS, GDPR, and HIPAA.

How does it handle threat categorization?

The skill utilizes the STRIDE methodology to map identified threats to specific security domains such as authentication, data protection, and availability.

What is the Security Requirement Extraction skill?

It is a specialized Claude Code skill that translates high-level threat analyses into specific, actionable technical security requirements and developer documentation.

Can I export the requirements to other formats?

The skill is designed to output requirements in standardized formats including Markdown, Python data classes, and traceability matrices suitable for documentation or task managers.

Security Requirement Extraction

Name: Security Requirement Extraction
Author: as4584

byas4584

0•

セキュリティとテスト

Transforms threat analysis and business context into actionable security requirements, user stories, and test cases.

This skill empowers developers and security engineers to bridge the gap between abstract threat models and concrete implementation. By leveraging structured templates and STRIDE mapping, it automates the creation of functional and non-functional security requirements, complete with acceptance criteria and traceability matrices. Whether you are documenting security architecture or building a compliance-ready backlog, this tool ensures your security posture is both verifiable and aligned with industry standards like OWASP, NIST, and GDPR.

主な機能

01Standardized compliance mapping for PCI DSS, HIPAA, and SOC2

02Security user story and acceptance criteria generation

030 GitHub stars

04Test specification generation for automated security verification

05Automated STRIDE-to-Requirement mapping logic

06Traceability matrix creation for threat-to-requirement linking

ユースケース

01Creating compliance-ready security architecture documentation

02Generating security test cases and verification steps for CI/CD

03Converting a manual threat model into a prioritized product backlog

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add as4584/antigravity-skills security-requirement-extraction

For use in Claude.ai and ChatGPT

主な機能

01Standardized compliance mapping for PCI DSS, HIPAA, and SOC2

02Security user story and acceptance criteria generation

030 GitHub stars

04Test specification generation for automated security verification

05Automated STRIDE-to-Requirement mapping logic

06Traceability matrix creation for threat-to-requirement linking

ユースケース

01Creating compliance-ready security architecture documentation

02Generating security test cases and verification steps for CI/CD

03Converting a manual threat model into a prioritized product backlog

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add as4584/antigravity-skills security-requirement-extraction

For use in Claude.ai and ChatGPT