AgentReadyHomeAgent Listing

← sast-configuration

sast-configuration — agentic threat model

8.4AIVSS 8.4 · High

This agent skill configures critical DevSecOps pipelines and SAST rules, presenting a high-impact target where compromise could lead to pipeline manipulation, rule bypasses, or credential exposure, though it operates primarily as a configuration guide.

OWASP AIVSS score rationale

AIVSS = (CVSS_Base + AARS) × Mitigation_Factor, where AARS = (10 − CVSS_Base) × (Factor_Sum / 10) × ThM
CVSS base 7.2AARS uplift 1.21Factor sum 4.1/10Threat ×1.05Mitigation ×1.0
Autonomy of Action
0.40
Goal-Driven Planning
0.50
Self-Modification
0.20
Dynamic Tool Use
0.60
Persistent Memory
0.30
Contextual Awareness
0.70
Dynamic Identity
0.30
Multi-Agent Interactions
0.20
Non-Determinism
0.50
Opacity & Reflexivity
0.40

Scored with the canonical OWASP AIVSS formula (AIVSS calculator reference); agentic risk factors estimated from the agent’s described capabilities.

MAESTRO 7-layer threat model

Per-layer threats for this agent. Layers tagged “not certain from listing” are general, caveated commentary where the public description didn’t pin that layer.

L1 · Foundation Models⚠ not certain from listing

Not certain from the listing — The underlying foundation model is not specified. It is vulnerable to prompt injection that could trick the agent into authoring weak or intentionally bypassed SAST rules.

L2 · Data Operations⚠ not certain from listing

Not certain from the listing — The data operations layer is not detailed, but the agent must ingest codebase context and existing SAST configurations, risking exposure of sensitive code patterns or intellectual property.

L3 · Agent Frameworks✓ mapped

The agent framework orchestrates the setup of Semgrep, SonarQube, and CodeQL. Vulnerabilities here include insecure tool integration or tool misuse, where the agent might execute arbitrary shell commands under the guise of pipeline configuration.

L4 · Deployment & Infrastructure⚠ not certain from listing

Not certain from the listing — The hosting and execution environment is unspecified. If integrated directly into CI/CD runners without strict sandboxing, a compromised agent could lead to container escape or lateral movement within the build network.

L5 · Evaluation & Observability⚠ not certain from listing

Not certain from the listing — There is no mention of built-in logging, guardrails, or evaluation mechanisms to detect if the agent is generating insecure configurations or being manipulated to disable quality gates.

L6 · Security & Compliance (cross-cutting)⚠ not certain from listing

Not certain from the listing — Compliance controls and identity/authorization mechanisms are not described. The agent requires access to CI/CD secrets and repository settings, which must be tightly governed to prevent unauthorized pipeline modifications.

L7 · Agent Ecosystem✓ mapped

The agent is designed to compose multiple SAST tools for defense-in-depth, but the listing does not specify multi-agent coordination or marketplace interactions, making cascading agent-to-agent failures unlikely unless integrated into a larger ecosystem.

MAESTRO — the 7-layer agentic threat-modeling framework (Cloud Security Alliance / Ken Huang).