diff --git a/README.md b/README.md
index e366ad5b1..a1f22f81c 100644
--- a/README.md
+++ b/README.md
@@ -236,6 +236,7 @@ The following community-contributed extensions are available in [`catalog.commun
 | Staff Review Extension | Staff-engineer-level code review that validates implementation against spec, checks security, performance, and test coverage | `code` | Read-only | [spec-kit-staff-review](https://github.com/arunt14/spec-kit-staff-review) |
 | Status Report | Project status, feature progress, and next-action recommendations for spec-driven workflows | `visibility` | Read-only | [Open-Agent-Tools/spec-kit-status](https://github.com/Open-Agent-Tools/spec-kit-status) |
 | Superpowers Bridge | Orchestrates obra/superpowers skills within the spec-kit SDD workflow across the full lifecycle (clarification, TDD, review, verification, critique, debugging, branch completion) | `process` | Read+Write | [superpowers-bridge](https://github.com/RbBtSn0w/spec-kit-extensions/tree/main/superpowers-bridge) |
+| TEKIMAX Secure SDD | Adds security gates to the SDD lifecycle — STRIDE threat modeling, data contracts, AI guardrails, model governance, and automated red team runs | `process` | Read+Write | [speckit-security](https://github.com/TEKIMAX/speckit-security) |
 | TinySpec | Lightweight single-file workflow for small tasks — skip the heavy multi-step SDD process | `process` | Read+Write | [spec-kit-tinyspec](https://github.com/Quratulain-bilal/spec-kit-tinyspec) |
 | V-Model Extension Pack | Enforces V-Model paired generation of development specs and test specs with full traceability | `docs` | Read+Write | [spec-kit-v-model](https://github.com/leocamello/spec-kit-v-model) |
 | Verify Extension | Post-implementation quality gate that validates implemented code against specification artifacts | `code` | Read-only | [spec-kit-verify](https://github.com/ismaelJimenez/spec-kit-verify) |
diff --git a/extensions/catalog.community.json b/extensions/catalog.community.json
index ec7ad87c5..0dda1c277 100644
--- a/extensions/catalog.community.json
+++ b/extensions/catalog.community.json
@@ -1751,6 +1751,41 @@
       "created_at": "2026-03-02T00:00:00Z",
       "updated_at": "2026-03-02T00:00:00Z"
     },
+    "tekimax-security": {
+      "name": "TEKIMAX Secure SDD",
+      "id": "tekimax-security",
+      "description": "Adds security gates to the SDD lifecycle — STRIDE threat modeling, data contracts, AI guardrails, model governance, automated red team, and post-implementation audit. Eight commands wired into five Spec Kit hooks. Rules can be installed into the project constitution and agent context files so they bind the AI agent at runtime.",
+      "author": "Christian Kaman (TEKIMAX)",
+      "version": "0.2.2",
+      "download_url": "https://github.com/TEKIMAX/speckit-security/archive/refs/tags/v0.2.2.zip",
+      "repository": "https://github.com/TEKIMAX/speckit-security",
+      "homepage": "https://tekimax.com",
+      "documentation": "https://github.com/TEKIMAX/speckit-security/blob/main/docs/GETTING-STARTED.md",
+      "changelog": "https://github.com/TEKIMAX/speckit-security/blob/main/CHANGELOG.md",
+      "license": "Apache-2.0",
+      "requires": {
+        "speckit_version": ">=0.1.0"
+      },
+      "provides": {
+        "commands": 8,
+        "hooks": 5
+      },
+      "tags": [
+        "security",
+        "threat-modeling",
+        "stride",
+        "red-team",
+        "guardrails",
+        "ai-safety",
+        "prompt-injection",
+        "compliance"
+      ],
+      "verified": false,
+      "downloads": 0,
+      "stars": 0,
+      "created_at": "2026-04-13T07:00:00Z",
+      "updated_at": "2026-04-13T08:30:00Z"
+    },
     "tinyspec": {
       "name": "TinySpec",
       "id": "tinyspec",