AWS Security Agent adds AI-powered threat modeling
AWS Security Agent now offers AI-powered threat modeling to automatically generate threat models for applications. This feature analyzes design documents or source code, identifies threats using the STRIDE framework, and suggests mitigations, reducing manual effort and specialized expertise requirements. Available in public preview for all AWS Security Agent regions, it integrates with IDEs and can be used by developers and security teams.
- →AI-powered threat modeling added to AWS Security Agent
- →IDE integration for early threat detection
- →Automated threat modeling reduces manual effort and expertise needs
- →Threat modeling available in public preview at no additional cost
Features (2) ›
- AI-powered threat modeling added to AWS Security Agent
AWS Security Agent, part of AWS Continuum, now includes an AI-powered agentic capability that automatically generates threat models for applications. It analyzes design documents or source code to identify threats and recommend mitigations using the STRIDE framework.
- IDE integration for early threat detection
Developers can integrate the agent into IDEs such as Kiro and Claude Code to create threat models from specifications and address threats early in the design phase. Security teams can also use it for pre-deployment assessments.
Enhancements (1) ›
- Automated threat modeling reduces manual effort and expertise needs
This new capability brings agentic AI reasoning to threat modeling, deeply analyzing application architecture, data flows, and trust boundaries to produce contextually relevant threat models with actionable mitigations across all six STRIDE categories.
Notes (1) ›
- Threat modeling available in public preview at no additional cost
The threat modeling capability is available in all regions supported by AWS Security Agent. It is offered at no additional cost during the public preview period.
https://aws.amazon.com/about-aws/whats-new/2026/06/aws-security-agent-threat-modeling/