AgentReadyHomeAgent Listing

← Promptus

Promptus — agentic threat model

8.7AIVSS 8.7 · High

Promptus presents a unique risk profile by combining generative AI workflows with a decentralized GPU compute marketplace. The primary hazards stem from the potential execution of untrusted code (via custom ComfyUI nodes) across a distributed, potentially un-sandboxed infrastructure.

OWASP AIVSS score rationale

AIVSS = (CVSS_Base + AARS) × Mitigation_Factor, where AARS = (10 − CVSS_Base) × (Factor_Sum / 10) × ThM
CVSS base 8.1AARS uplift 0.6Factor sum 3.0/10Threat ×1.05Mitigation ×1.0
Autonomy of Action
0.30
Goal-Driven Planning
0.20
Self-Modification
0.10
Dynamic Tool Use
0.40
Persistent Memory
0.20
Contextual Awareness
0.20
Dynamic Identity
0.10
Multi-Agent Interactions
0.20
Non-Determinism
0.80
Opacity & Reflexivity
0.50

Scored with the canonical OWASP AIVSS formula (AIVSS calculator reference); agentic risk factors estimated from the agent’s described capabilities.

MAESTRO 7-layer threat model

Per-layer threats for this agent. Layers tagged “not certain from listing” are general, caveated commentary where the public description didn’t pin that layer.

L1 · Foundation Models✓ mapped

Uses the latest generative AI models for video, image, and 3D asset generation. Key threats include model reprogramming, adversarial inputs causing resource exhaustion, and intellectual property/copyright risks associated with generated outputs.

L2 · Data Operations⚠ not certain from listing

Not certain from the listing — No explicit details are provided regarding training data, vector databases, or RAG operations, though the system manages and stores generated digital assets, presenting risks of data exfiltration or asset lineage gaps.

L3 · Agent Frameworks✓ mapped

Orchestrates generation via an intuitive ComfyUI node-based workflow builder ('Cosyflows'). This introduces significant risks of insecure tool integration, where malicious or poorly constructed custom nodes can execute arbitrary code during workflow runs.

L4 · Deployment & Infrastructure✓ mapped

Utilizes a decentralized GPU compute marketplace. This infrastructure model introduces severe threats of host compromise, lateral movement, and lack of sandboxing if workflows are executed on untrusted, external provider hardware.

L5 · Evaluation & Observability⚠ not certain from listing

Not certain from the listing — There is no mention of evaluation frameworks, output guardrails, or observability logging to detect anomalous workflow executions or malicious node behaviors.

L6 · Security & Compliance (cross-cutting)⚠ not certain from listing

Not certain from the listing — The directory does not specify identity management, access controls, or compliance standards (such as SOC2 or ISO) governing the marketplace or asset management system.

L7 · Agent Ecosystem✓ mapped

Operates within a decentralized marketplace ecosystem where users share workflows and compute resources. This creates exposure to supply-chain attacks (compromised workflows/nodes) and rogue compute providers manipulating execution outputs.

MAESTRO — the 7-layer agentic threat-modeling framework (Cloud Security Alliance / Ken Huang).