Skill

agentic-ai-risk-assess

Assesses agentic AI applications against OWASP Top 10 for Agentic Applications 2026, evaluating risks like goal hijacking, tool misuse, privilege abuse, and rogue agents. Use for reviewing autonomous AI agents, multi-agent systems, or workflows.

security

ai-ml

npx claudepluginhub cmaenner/agent-security-playbook

Tool Access

This skill uses the workspace's default tool permissions.

Preview

Evaluate agentic AI applications against all 10 risk categories by following the full procedure in `plays/tier4-ai-security/agentic-ai-risk-assess.md`.

SKILL.md

Similar Skills

excessive-agency

Flags vulnerable patterns in autonomous LLM agents enabling irreversible actions without oversight. Suggests fixes like impact classification, tool allowlists, pre-dispatch auditing, and structured parameters for safe workflows.

soundcheck

ai-engineering-toolkit

37.1k

Provides 6 AI engineering workflows: prompt evaluation (8D scoring), context budget planning, RAG pipeline design, agent security audit (65-pt checklist), eval harness building, product sense coaching. For LLM production systems.

antigravity-awesome-skills

canary-watch

179.4k

Monitors deployed URLs for regressions after deploys, merges, or upgrades by checking HTTP status, console errors, network failures, performance (LCP/CLS/INP), content, and API health.

ecc

Stats

Stars5

Forks2

Last CommitMar 7, 2026

Used By2 plugins

Actions

View Source View Plugin View on GitHub View README

Help us improve

Share bugs, ideas, or general feedback.

Agentic AI Risk Assessment

Evaluate agentic AI applications against all 10 risk categories by following the full procedure in plays/tier4-ai-security/agentic-ai-risk-assess.md.

Steps

Architecture Mapping — Identify agent type (single/multi-agent), autonomy level, tool ecosystem, memory systems, inter-agent communication protocols, and human oversight mechanisms.

Assess Each Agentic Top 10 Risk:

ASI01 Agent Goal Hijack — Hidden prompts, instruction override, silent exfiltration via copilot patterns
ASI02 Tool Misuse — Legitimate tools bent into destructive outputs, tool parameter manipulation
ASI03 Identity & Privilege Abuse — Leaked credentials, excessive permissions, agent operating beyond scope
ASI04 Agentic Supply Chain — Poisoned MCP/A2A components, runtime component tampering, dynamic ecosystem risks
ASI05 Unexpected Code Execution — Natural language execution paths leading to RCE, code generation vulnerabilities
ASI06 Memory & Context Poisoning — Long-term behavior manipulation via memory attacks, context window exploits
ASI07 Insecure Inter-Agent Communication — Spoofed messages, man-in-the-middle between agents, cluster misdirection
ASI08 Cascading Failures — False signals propagating through automated pipelines, escalating impact chains
ASI09 Human-Agent Trust Exploitation — Confident misleading explanations, social engineering of human operators
ASI10 Rogue Agents — Misalignment, concealment, self-directed action, emergent harmful behavior

Synthesize Findings — Assign severity based on exploitability and deployment context. Provide code locations, configuration gaps, and concrete remediation.

Output

Architecture overview, risk matrix (all 10 categories with status), detailed findings using templates/finding.md, positive controls observed, and prioritized recommendations.

OWASP References

OWASP Top 10 for Agentic Applications 2026

OWASP GenAI Security Project

OWASP Agentic Security Initiative