AgentReadyHomeAgent Listing

← upscayl

upscayl — agentic threat model

5.6AIVSS 5.6 · Medium

Upscayl is a narrow, single-purpose image upscaling utility with virtually no agentic capabilities, presenting minimal risk of autonomous harm or systemic cascading failures. The primary security concerns are traditional web application and infrastructure vulnerabilities, such as malicious image payloads or data privacy leaks of uploaded user photos.

OWASP AIVSS score rationale

AIVSS = (CVSS_Base + AARS) × Mitigation_Factor, where AARS = (10 − CVSS_Base) × (Factor_Sum / 10) × ThM
CVSS base 5.3AARS uplift 0.25Factor sum 0.6/10Threat ×0.9Mitigation ×1.0
Autonomy of Action
0.00
Goal-Driven Planning
0.00
Self-Modification
0.00
Dynamic Tool Use
0.00
Persistent Memory
0.00
Contextual Awareness
0.10
Dynamic Identity
0.00
Multi-Agent Interactions
0.00
Non-Determinism
0.20
Opacity & Reflexivity
0.30

Scored with the canonical OWASP AIVSS formula (AIVSS calculator reference); agentic risk factors estimated from the agent’s described capabilities.

MAESTRO 7-layer threat model

Per-layer threats for this agent. Layers tagged “not certain from listing” are general, caveated commentary where the public description didn’t pin that layer.

L1 · Foundation Models✓ mapped

Uses specialized image super-resolution models (e.g., Real-ESRGAN or similar). Threats include adversarial image inputs designed to cause model evasion, resource exhaustion, or model stealing of proprietary weights if hosted privately.

L2 · Data Operations⚠ not certain from listing

Not certain from the listing — the tool processes user-uploaded images. If images are cached or stored, there is a risk of data exfiltration or privacy violations. There is no evidence of a vector database or RAG architecture.

L3 · Agent Frameworks✓ mapped

This tool does not use an agentic framework, orchestration, or tool-calling loops. It functions as a direct input-output pipeline, eliminating threats related to autonomous planning or tool misuse.

L4 · Deployment & Infrastructure⚠ not certain from listing

Not certain from the listing — likely deployed on cloud infrastructure with GPU acceleration. Key threats include container escape, denial of service via heavy image processing requests, and remote code execution (RCE) through vulnerable image-parsing libraries.

L5 · Evaluation & Observability⚠ not certain from listing

Not certain from the listing — no details are provided regarding input validation, content moderation guardrails, or logging. Lack of monitoring could allow users to process illicit or copyrighted material undetected.

L6 · Security & Compliance (cross-cutting)⚠ not certain from listing

Not certain from the listing — there is no mention of user authentication, access controls, or compliance with data protection regulations (like GDPR/CCPA) regarding the handling and retention of user-uploaded images.

L7 · Agent Ecosystem✓ mapped

This tool operates in isolation and does not interact with other agents, marketplaces, or external ecosystems, rendering multi-agent cascading threats inapplicable.

MAESTRO — the 7-layer agentic threat-modeling framework (Cloud Security Alliance / Ken Huang).