AgentReadyHomeAgent Listing

← AI Security Guard

AI Security Guard — agentic threat model

5.0AIVSS 5.0 · Medium

AI Security Guard acts as a defensive security agent and SDK with low inherent autonomy, designed to monitor and protect other agents. Its primary risk lies not in its own agentic actions, but in the potential for bypass or false negatives in its jailbreak and injection detection capabilities.

OWASP AIVSS score rationale

AIVSS = (CVSS_Base + AARS) × Mitigation_Factor, where AARS = (10 − CVSS_Base) × (Factor_Sum / 10) × ThM
CVSS base 6.5AARS uplift 0.6Factor sum 1.8/10Threat ×0.95Mitigation ×0.7
Autonomy of Action
0.20
Goal-Driven Planning
0.10
Self-Modification
0.00
Dynamic Tool Use
0.20
Persistent Memory
0.10
Contextual Awareness
0.40
Dynamic Identity
0.10
Multi-Agent Interactions
0.20
Non-Determinism
0.30
Opacity & Reflexivity
0.20

Scored with the canonical OWASP AIVSS formula (AIVSS calculator reference); agentic risk factors estimated from the agent’s described capabilities.

MAESTRO 7-layer threat model

Per-layer threats for this agent. Layers tagged “not certain from listing” are general, caveated commentary where the public description didn’t pin that layer.

L1 · Foundation Models⚠ not certain from listing

Not certain from the listing — The listing mentions supporting 500+ LLM models for cost tracking and using machine-learning-aided scanning, but does not specify which foundation models AI Security Guard itself uses to perform its analysis.

L2 · Data Operations✓ mapped

The agent uses a privacy-first architecture that keeps data on the user's device by default, significantly reducing the risk of data exfiltration and centralized knowledge-base poisoning.

L3 · Agent Frameworks⚠ not certain from listing

Not certain from the listing — While the SDK wraps the API into simple function calls to prevent tool misuse in client agents, the internal orchestration framework of the guard itself is not described.

L4 · Deployment & Infrastructure✓ mapped

Features a 'Shield scanner' that performs 14-phase device hardening scans to protect the agent's environment, directly addressing host compromise and infrastructure vulnerabilities.

L5 · Evaluation & Observability✓ mapped

This is a core strength; the agent provides 'Radar' runtime scanning of ingested/produced content, health grades, security posture tracking, and budget/token spend intelligence to eliminate observability blind spots.

L6 · Security & Compliance (cross-cutting)✓ mapped

Directly addresses security and compliance by preventing credential leaks (API keys, secrets), detecting jailbreaks, and screening for harmful content via its underlying API.

L7 · Agent Ecosystem✓ mapped

Designed to secure the broader agent ecosystem by scanning the content that other agents produce and ingest, mitigating cascading failures and trust abuse between interacting agents.

MAESTRO — the 7-layer agentic threat-modeling framework (Cloud Security Alliance / Ken Huang).