AgentReadyHomeAgent Listing

← Recrubo.ai

Recrubo.ai — agentic threat model

7.5AIVSS 7.5 · High

Recrubo.ai presents a moderate-to-high risk profile due to its integration with sensitive ATS and CRM systems containing candidate PII, combined with its capability to dynamically generate and deploy role-specific pre-screening bots.

OWASP AIVSS score rationale

AIVSS = (CVSS_Base + AARS) × Mitigation_Factor, where AARS = (10 − CVSS_Base) × (Factor_Sum / 10) × ThM
CVSS base 7.5AARS uplift 1.27Factor sum 5.1/10Threat ×1.0Mitigation ×0.85
Autonomy of Action
0.70
Goal-Driven Planning
0.60
Self-Modification
0.20
Dynamic Tool Use
0.70
Persistent Memory
0.60
Contextual Awareness
0.50
Dynamic Identity
0.30
Multi-Agent Interactions
0.40
Non-Determinism
0.60
Opacity & Reflexivity
0.50

Scored with the canonical OWASP AIVSS formula (AIVSS calculator reference); agentic risk factors estimated from the agent’s described capabilities.

MAESTRO 7-layer threat model

Per-layer threats for this agent. Layers tagged “not certain from listing” are general, caveated commentary where the public description didn’t pin that layer.

L1 · Foundation Models⚠ not certain from listing

Not certain from the listing — likely utilizes commercial LLMs to analyze job descriptions and drive conversational pre-screening. Primary threats include prompt injection leading to bypassed qualification criteria or biased candidate evaluation.

L2 · Data Operations⚠ not certain from listing

Not certain from the listing — ingests vacancy details, CRM profiles, and candidate responses. Risks involve the exposure or exfiltration of candidate PII (GDPR/CCPA implications) and potential data poisoning of the profile enrichment pipeline.

L3 · Agent Frameworks⚠ not certain from listing

Not certain from the listing — orchestrates the generation of sub-bots and coordinates ATS/CRM integrations. Vulnerabilities could allow unauthorized tool execution, such as manipulating interview schedules or writing fraudulent candidate data back to the ATS.

L4 · Deployment & Infrastructure⚠ not certain from listing

Not certain from the listing — likely deployed as a SaaS platform. Key threats include insecure API endpoints connecting to third-party ATS/CRM systems and inadequate sandboxing of the generated bot instances.

L5 · Evaluation & Observability⚠ not certain from listing

Not certain from the listing — requires robust guardrails and drift detection to ensure generated bots do not hallucinate job requirements or exhibit discriminatory behavior during candidate interactions.

L6 · Security & Compliance (cross-cutting)✓ mapped

The listing explicitly highlights validation by millions of users and full compliance with the EU AI Act, CCPA, and GDPR. This indicates strong baseline compliance controls around automated decision-making and candidate data privacy.

L7 · Agent Ecosystem✓ mapped

The system operates as a generator of specialized sub-bots ('instantly generates AI bots tailored for each role'). A compromise at the generator level could lead to a cascading supply-chain attack, deploying malicious or biased screening bots across all connected client ATS platforms.

MAESTRO — the 7-layer agentic threat-modeling framework (Cloud Security Alliance / Ken Huang).