Neuwark — agentic threat model

Not certain from the listing — The specific underlying foundation models are not disclosed. Standard LLM threats such as prompt injection, adversarial manipulation, and misaligned outputs are highly relevant given the direct customer-facing nature of the agent.

The agent utilizes enterprise data with highly customizable RAG parameters (Chunk Size, Chunk Overlap, Top K, Cutoff Score). This exposes the system to risks of knowledge-base data poisoning, embedding inversion, and unauthorized exfiltration of sensitive enterprise data through customer queries.

The agent framework orchestrates actions across multiple messaging platforms. Risks include prompt injection leading to unauthorized tool execution (e.g., sending rogue messages) and bypass of the defined cutoff scores or prompt constraints.

Not certain from the listing — The hosting infrastructure, sandboxing mechanisms, and secrets management for external channel APIs (WhatsApp, Telegram, etc.) are not detailed in the public directory.

The platform features 'Built-in Observability' to monitor the agent's working process in real-time and provides 'Responses with References' to ensure transparency. This significantly mitigates the risk of silent failures, though logging integrity must be secured.

Not certain from the listing — While team-friendly management is mentioned, specific access control policies, enterprise authentication (SSO), and regulatory compliance alignments (e.g., GDPR for customer chats) are not specified.

The agent operates within a multi-channel ecosystem (WhatsApp, Telegram, Facebook, Instagram, and websites). This external exposure introduces risks of API abuse, platform-specific injection attacks, and reputational damage from unmoderated customer interactions.