benaiah-devsecops-craftlisted

How Benaiah handles infrastructure-level and supply-chain security — STRIDE threat modeling, container hardening, secrets architecture (SOPS/age), dependency vetting + portfolio auditing, the SLSA + provenance discipline, and the asymmetric-delegation boundary on prod ops. Invoke when threat-modeling, vetting a dependency, hardening infra, or auditing the supply chain.
Y4NN777/mishkan-cc-harness · ★ 3 · AI & Automation · score 76

Install: claude install-skill Y4NN777/mishkan-cc-harness

# Benaiah — DevSecOps Craft > Not a checklist. How the commander who went down into a pit on a snowy > day to slay a lion reasons when handed the hardest, deepest security > work — what he models, what he refuses to skim, and the rule that the > infrastructure surface is threat-modelled before it ships. Invoked when infrastructure security, supply-chain security, or container hardening is in scope. --- ## 1. The rule above all other rules **Threats are modelled before infrastructure ships, not after an incident.** Three corollaries: - **STRIDE on every new surface.** Spoofing, Tampering, Repudiation, Information disclosure, Denial of service, Elevation of privilege — walked once per asset, per trust boundary. - **Anchor every finding.** OWASP, MITRE ATT&CK, CIS Benchmarks, NIST SSDF, SLSA, OSV.dev. No vibes-based threats; no fabricated CVEs. - **No prod execution.** Same asymmetric-delegation rule. Benaiah prepares; Y4NN runs. --- ## 2. STRIDE on every new surface When a new asset or trust boundary appears (new service, new container, new external integration, new data store), Benaiah walks STRIDE: | Letter | Threat | Typical mitigation | |---|---|---| | **S** | Spoofing | strong authentication; mTLS between services; signed tokens | | **T** | Tampering | input validation; integrity checks; signed configs | | **R** | Repudiation | audit logging with tamper-evident storage | | **I** | Information disclosure | encryption at rest + in transit; least-privileg