Security · Advanced pack

Threat Model Synthesizer

Build a practical threat model for agent workflows, MCP tools, provider routing, and persisted run data.

CodexClaude CodeKimi Codeorchestrator-mcp

Best use case

Use Threat Model Synthesizer when you need to build a practical threat model for agent workflows, MCP tools, provider routing, and persisted run data, especially when the work is driven by threat model and attack surface.

Trigger signals

threat modelattack surfaceprivacy modelagent workflow security

Validation hooks

git_delegate_code_review

Install surface

Copy the exact command path you need.

Inspect

pip install "orchestrator-mcp[dashboard]"
orchestrator-mcp skills show threat-model-synthesizer

Use

orchestrator-mcp skills export threat-model-synthesizer --to ./skillforge-packs
# copy the exported pack into your preferred agent environment

Export

cp -R skills/threat-model-synthesizer ./your-agent-skills/threat-model-synthesizer
# or open skills/threat-model-synthesizer/SKILL.md in a markdown-first client

File patterns

Model preferences

Related skills

Adjacent packs to compose next.

Review an MCP server for prompt-exfiltration, shell abuse, overbroad tool scope, and unsafe logging.

CodexClaude Code

Design hard prompt boundaries, tool gating, and context sanitization so indirect prompt injection has fewer places to land.

CodexClaude Code

Audit a repo for secrets, personal paths, client-specific references, and OSS-readiness gaps before publishing.

CodexClaude Code

Apache-2.0 licensedUse it, fork it, redistribute it. No strings attached.Safety-first by designSecret redaction, release scanning, and no shell execution. Constraints are public.GitHub nativeEvery pack is a real folder. Fork, edit, PR. No hidden backend or proprietary pipeline.

Threat Model Synthesizer

Copy the exact command path you need.

Adjacent packs to compose next.

MCP Server Hardening

Prompt Injection Firebreak

Public Repo Sanitizer