AgentReadyHomeAgent ListingPricing

← UseJunior AI Assistant

UseJunior AI Assistant — agentic threat model

6.1AIVSS 6.1 · Medium

UseJunior presents a moderate-to-high risk profile due to its handling of highly sensitive legal contracts via an email-based interface, which is susceptible to spoofing and data interception. However, its ISO 27001 certification and citation-backed outputs significantly mitigate operational and compliance risks.

OWASP AIVSS score rationale

AIVSS = (CVSS_Base + AARS) × Mitigation_Factor, where AARS = (10 − CVSS_Base) × (Factor_Sum / 10) × ThM
CVSS base 7.5AARS uplift 0.57Factor sum 2.3/10Threat ×1.0Mitigation ×0.75
Autonomy of Action
0.40
Goal-Driven Planning
0.30
Self-Modification
0.00
Dynamic Tool Use
0.20
Persistent Memory
0.10
Contextual Awareness
0.50
Dynamic Identity
0.10
Multi-Agent Interactions
0.00
Non-Determinism
0.40
Opacity & Reflexivity
0.30

Scored with the canonical OWASP AIVSS formula (AIVSS calculator reference); agentic risk factors estimated from the agent’s described capabilities.

MAESTRO 7-layer threat model

Per-layer threats for this agent. Layers tagged “not certain from listing” are general, caveated commentary where the public description didn’t pin that layer.

L1 · Foundation Models⚠ not certain from listing

Not certain from the listing — The underlying foundation models are closed-source and unspecified. Threats include adversarial prompt injection embedded within uploaded contracts designed to hide malicious clauses or manipulate the review output.

L2 · Data Operations⚠ not certain from listing

Not certain from the listing — The agent processes large documents (up to 150 pages) and performs comparisons, likely utilizing a temporary vector store or RAG pipeline. Threats include data exfiltration of highly sensitive legal agreements and potential data leakage across parallel tenant requests.

L3 · Agent Frameworks⚠ not certain from listing

Not certain from the listing — Orchestration handles document parsing, parallel execution, and email generation. Threats include insecure parsing of malicious PDF/Word attachments and prompt injection exploiting the email-to-agent pipeline.

L4 · Deployment & Infrastructure⚠ not certain from listing

Not certain from the listing — The infrastructure relies on email servers (SMTP/IMAP) and cloud document processing. Threats include interception of unencrypted emails, lack of transport layer security (TLS) enforcement, and container escape during document parsing.

L5 · Evaluation & Observability⚠ not certain from listing

Not certain from the listing — The system provides verifiable citations to mitigate LLM hallucination, but automated monitoring of model drift or adversarial inputs is not detailed. Threats include blind spots where the model misses critical clauses without triggering alerts.

L6 · Security & Compliance (cross-cutting)✓ mapped

The agent is explicitly ISO 27001 certified, indicating established information security management systems. However, relying on email as the primary interface introduces significant identity and authorization risks, such as email spoofing (SPF/DKIM/DMARC bypass) leading to unauthorized document access.

L7 · Agent Ecosystem⚠ not certain from listing

Not certain from the listing — The agent operates as a standalone vertical solution via email. Threats are primarily external, such as phishing campaigns impersonating the 'Junior' assistant to harvest sensitive legal documents from lawyers.

MAESTRO — the 7-layer agentic threat-modeling framework (Cloud Security Alliance / Ken Huang).

These scores are auto-generated from public information (the agent's own listing, docs, and repository) using the canonical OWASP AIVSS formula and the MAESTRO framework — an estimate for guidance, not a penetration test, audit, or certification. See the scoring methodology. Are you the vendor? Factual corrections are free.