Threagile

Threagile is an open-source agile threat modeling toolkit that enables security teams and architects to model system architectures with assets, trust boundaries, and data flows in YAML format directly within IDEs, then automatically execute security risk rules and generate threat assessments with mitigation advice based on standard and custom security policies. The platform seamlessly integrates into DevSecOps workflows through command-line execution, Docker containers, or REST API interfaces to produce comprehensive threat analysis reports, risk tracking with current mitigation status, automated data-flow diagrams, and multiple output formats including PDF, Excel, and JSON for continuous threat modeling throughout the software development lifecycle.