cornucopia icon indicating copy to clipboard operation
cornucopia copied to clipboard
verified publisher icon OWASP

Add a feature in Threat dragon for selecting cards

Open sydseter opened this issue 10 months ago • 3 comments

We have started to create apis that contain OpenCRE codes that we will import to OpenCRE. The same api could be used to help Threat Dragon create a feature for selecting the cards and even import related ASVS and NIST resources into the theat modeling process.

Wouldn’t it be great if the dev teams could finish defining their security requirements while doing threat modeling?

It could change how teams tackle threat modeling and security requirements while automatically defining their requirement list.

sydseter avatar Mar 01 '25 18:03 sydseter

We should ensure we help them out with this. We also need to help out OpenCRE and the MAS project to ensure they are connected (e.g: importing MASV into OpenCRE) and while we are doing that lets do ourself a favor and add EoP as an option too.

sydseter avatar Mar 01 '25 18:03 sydseter

See https://github.com/OWASP/threat-dragon/issues/140

sydseter avatar Mar 02 '25 15:03 sydseter

see: https://github.com/OWASP/threat-dragon/issues/1373

sydseter avatar Nov 07 '25 14:11 sydseter