soc-security-skills
SoC Security Skills
Purpose
Routes SoC hardware security analysis requests to the appropriate specialist skill.
Classification
- If threat modeling, STRIDE, attack trees, or standards-derived threat extraction → load
skills/threat-model-skill/SKILL.md - If verification planning, SVA assertions, or security checklists → load
skills/verification-scaffold-skill/SKILL.md - If compliance mapping, gap analysis, FIPS 140-3, or ISO 21434 → load
skills/compliance-pipeline-skill/SKILL.md - If executive briefing, risk register, or board/CISO updates → load
skills/executive-brief-skill/SKILL.md - If Spectre, Meltdown, MDS, cache side-channels, or branch predictor attacks → load
skills/microarch-attack-skill/SKILL.md - If DPA, SPA, fault injection, JIL scoring, or ISO 17825 → load
skills/physical-sca-skill/SKILL.md - If kernel security, KASLR, IOMMU, seccomp, or privilege escalation → load
skills/kernel-security-skill/SKILL.md - If PQC, chiplets, UCIe, heterogeneous compute, or AI accelerator security → load
skills/emerging-hw-security-skill/SKILL.md - If TLA+, formal verification, or safety/liveness properties → load
skills/tlaplus-security-skill/SKILL.md - Default: If request involves threat identification → threat-model-skill. Otherwise ask to clarify.
Skill Registry
| Skill | Path | Purpose | Model |
|---|---|---|---|
| threat-model | skills/threat-model-skill/SKILL.md |
STRIDE + attack tree threat identification | sonnet |
| verification-scaffold | skills/verification-scaffold-skill/SKILL.md |
Tiered verification checklists + SVA templates | sonnet |
| compliance-pipeline | skills/compliance-pipeline-skill/SKILL.md |
Standards compliance mapping + gap analysis | sonnet |
| executive-brief | skills/executive-brief-skill/SKILL.md |
4-layer abstraction executive communication | sonnet |
| microarch-attack | skills/microarch-attack-skill/SKILL.md |
Transient execution + cache side-channel analysis | opus |
| physical-sca | skills/physical-sca-skill/SKILL.md |
JIL scoring + ISO 17825 side-channel assessment | opus |
| kernel-security | skills/kernel-security-skill/SKILL.md |
Kernel hardening + isolation boundary analysis | sonnet |
| emerging-hw-security | skills/emerging-hw-security-skill/SKILL.md |
PQC + chiplet + heterogeneous compute security | sonnet |
| tlaplus-security | skills/tlaplus-security-skill/SKILL.md |
TLA+ formal security property specification | opus |
Load Directive
Read ONLY the relevant specialist SKILL.md based on classification above. Do not pre-load multiple specialists. If the request spans multiple specialists, complete one specialist's full procedure before loading the next.
Handoff Protocol
Pass between skills as structured data:
{
"source_skill": "skill-name",
"entity_type": "ThreatFindings|VerificationChecklist|ComplianceState|BriefSections|...",
"findings": [],
"confidence_summary": {"CONFIRMED": 0, "INFERRED": 0, "SPECULATIVE": 0}
}
Downstream skills consume upstream entity types. See shared-references/soc-security/entity-schema.md for type definitions.
More from dtsong/my-claude-setup
web-security-hardening
Security audit checklist for web applications. Use when reviewing, auditing, or hardening a web app's security posture. Covers rate limiting, auth headers, IP blocking, CORS, security middleware, input validation, file upload limits, ORM usage, and password hashing. Triggers on requests like "review security", "harden this app", "security audit", "check for vulnerabilities", or when building/reviewing API endpoints.
26web-design-guidelines
Review UI code for Web Interface Guidelines compliance. Use when asked to "review my UI", "check accessibility", "audit design", "review UX", or "check my site against best practices".
8tdd
>
3vercel-react-best-practices
React and Next.js performance optimization guidelines from Vercel Engineering. This skill should be used when writing, reviewing, or refactoring React/Next.js code to ensure optimal performance patterns. Triggers on tasks involving React components, Next.js pages, data fetching, bundle optimization, or performance improvements.
3code-search
Fast codebase searches using grep/glob. Triggers on "find", "search", "where is", "grep for".
2prompt wizard
Interactive wizard to craft effective prompts using Claude Code best practices
2