AgentReadyHomeAgent Listing

← ResumeBoostAI

ResumeBoostAI — agentic threat model

6.5AIVSS 6.5 · Medium

ResumeBoostAI is a low-autonomy productivity agent focused on text generation and optimization. Its primary security risks center around the exposure of sensitive user PII (resumes, contact details) and standard web application vulnerabilities rather than complex agentic threats.

OWASP AIVSS score rationale

AIVSS = (CVSS_Base + AARS) × Mitigation_Factor, where AARS = (10 − CVSS_Base) × (Factor_Sum / 10) × ThM
CVSS base 5.8AARS uplift 0.71Factor sum 1.7/10Threat ×1.0Mitigation ×1.0
Autonomy of Action
0.10
Goal-Driven Planning
0.20
Self-Modification
0.00
Dynamic Tool Use
0.10
Persistent Memory
0.20
Contextual Awareness
0.40
Dynamic Identity
0.00
Multi-Agent Interactions
0.00
Non-Determinism
0.50
Opacity & Reflexivity
0.20

Scored with the canonical OWASP AIVSS formula (AIVSS calculator reference); agentic risk factors estimated from the agent’s described capabilities.

MAESTRO 7-layer threat model

Per-layer threats for this agent. Layers tagged “not certain from listing” are general, caveated commentary where the public description didn’t pin that layer.

L1 · Foundation Models⚠ not certain from listing

Not certain from the listing — likely relies on third-party commercial LLMs via API. Primary threats include prompt injection to bypass freemium restrictions or generate unauthorized content, and potential model-use data leakage if user inputs are not opted out of training.

L2 · Data Operations⚠ not certain from listing

Not certain from the listing — processes highly sensitive PII (full names, contact info, employment history). Risks include insecure storage of uploaded resumes/CVs, lack of data sanitization before processing, and potential data exfiltration via indirect prompt injection embedded in job descriptions.

L3 · Agent Frameworks⚠ not certain from listing

Not certain from the listing — likely uses a basic orchestration wrapper for document parsing and text generation. The main threat is insecure integration with document parsing libraries (e.g., PDF/DOCX parsers) which may be vulnerable to remote code execution or denial of service.

L4 · Deployment & Infrastructure⚠ not certain from listing

Not certain from the listing — deployed as a web application with API access. Standard web infrastructure risks apply, including insecure API endpoints, lack of rate limiting on the freemium tier, and insufficient sandboxing of document processing environments.

L5 · Evaluation & Observability⚠ not certain from listing

Not certain from the listing — no mention of LLM guardrails, evaluation frameworks, or observability tools. This creates blind spots regarding prompt injection attempts, generation drift, or abusive API usage.

L6 · Security & Compliance (cross-cutting)⚠ not certain from listing

Not certain from the listing — likely uses standard web authentication. Compliance is a major concern here, as storing and processing resumes requires strict adherence to GDPR, CCPA, and other data privacy regulations regarding user data deletion and consent.

L7 · Agent Ecosystem✓ mapped

No multi-agent or marketplace interactions are described in the listing; the agent operates as a standalone productivity tool, meaning ecosystem risks are currently negligible.

MAESTRO — the 7-layer agentic threat-modeling framework (Cloud Security Alliance / Ken Huang).