bogdanticu88

bogdanticu88 / threatmap

Public

Static IaC threat modeler , parses Terraform, CloudFormation, and Kubernetes manifests and applies STRIDE rules to produce a structured threat model report with a Mermaid DFD.

cloudformation devsecops dfd github-actions iac-security
28
5
100% credibility
Found Feb 23, 2026 at 17 stars -- GitGems finds repos before they trend. Get early access to the next one.
Sign Up Free
AI Analysis
Python
AI Summary

threatmap analyzes infrastructure-as-code files from Terraform, CloudFormation, and Kubernetes to generate STRIDE-based threat model reports including data flow diagrams, all offline without credentials.

How It Works

1
📖 Discover threatmap

You find threatmap, a friendly tool that checks your cloud setup files for hidden security risks before you build anything.

2
🛠️ Set it up

You add threatmap to your computer in a simple step, ready to use right away.

3
📁 Gather your files

You pick the folders with your cloud blueprints, like plans for storage or servers.

4
🔍 Run the check

You ask threatmap to scan your files, and it quickly reviews everything offline without needing passwords.

5
📊 Read the report

You get a clear list of risks sorted by danger level, with easy tips on how to fix each one.

6
🗺️ View the safety map

A colorful diagram shows how your parts connect and lights up the risky spots.

Build safely

Your cloud setup is now stronger, with no surprises, ready for your team to use confidently.

Sign up to see the full architecture

5 more

Sign Up Free

Star Growth

See how this repo grew from 17 to 28 stars Sign Up Free
Repurpose This Repo

Repurpose is a Pro feature

Generate ready-to-use prompts for X threads, LinkedIn posts, blog posts, YouTube scripts, and more -- with full repo context baked in.

Unlock Repurpose
AI-Generated Review

What is threatmap?

threatmap is a Python CLI tool for static IaC analysis that scans Terraform, CloudFormation, and Kubernetes manifests to apply STRIDE threat modeling rules. It generates Markdown or JSON reports with threat tables, severity breakdowns, and Mermaid data flow diagrams—fully offline, no cloud credentials or network calls required. Run `threatmap scan ./infra/ --output report.md --fail-on HIGH` to get a threat map of your infrastructure risks.

Why is it gaining traction?

Unlike dynamic scanners, it delivers instant GitHub static code analysis results with visual DFDs that render on static GitHub pages, making threat maps shareable in PRs. CI gates block merges on critical/high issues, and 73 rules cover AWS, Azure, GCP, and Kubernetes misconfigs like open S3 buckets or public EKS APIs. It's a lightweight alternative to heavyweight IaC static analysis suites, focused on actionable STRIDE insights.

Who should use this?

IaC engineers reviewing Terraform or K8s PRs for security debt. DevSecOps teams building GitHub Actions pipelines for static IaC threat modeling. Suited for platform teams enforcing baselines on CloudFormation stacks before prod.

Verdict

Solid beta for IaC static analysis with strong docs and pytest coverage, but 12 stars and 1.0% credibility score signal early maturity—test it on real repos first. Grab it if you need quick STRIDE threat maps in your workflow.

(178 words)

Sign up to read the full AI review Sign Up Free

Similar repos coming soon.