원클릭으로 Manus에서 모든 스킬 실행

$pwd:

agentic-ai-risk-assess

Name: Agentic Ai Risk Assess
Author: OWASP

// Assess agentic AI applications against the OWASP Top 10 for Agentic Applications 2026. Use when reviewing autonomous AI agents, multi-agent systems, or agentic workflows for security risks including goal hijacking, tool misuse, privilege abuse, and rogue agent behavior.

Manus에서 실행

$ git log --oneline --stat

stars:78

forks:8

updated:2026년 5월 17일 20:08

SKILL.md

readonly

name	agentic-ai-risk-assess
description	Assess agentic AI applications against the OWASP Top 10 for Agentic Applications 2026. Use when reviewing autonomous AI agents, multi-agent systems, or agentic workflows for security risks including goal hijacking, tool misuse, privilege abuse, and rogue agent behavior.
license	CC-BY-4.0

Agentic AI Risk Assessment

Evaluate agentic AI applications against all 10 risk categories by following the full procedure in plays/agentic-ai-risk-assess.md.

Steps

Architecture Mapping — Identify agent type (single/multi-agent), autonomy level, tool ecosystem, memory systems, inter-agent communication protocols, and human oversight mechanisms.
Assess Each Agentic Top 10 Risk:
- ASI01 Agent Goal Hijack — Hidden prompts, instruction override, silent exfiltration via copilot patterns
- ASI02 Tool Misuse — Legitimate tools bent into destructive outputs, tool parameter manipulation
- ASI03 Identity & Privilege Abuse — Leaked credentials, excessive permissions, agent operating beyond scope
- ASI04 Agentic Supply Chain — Poisoned MCP/A2A components, runtime component tampering, dynamic ecosystem risks
- ASI05 Unexpected Code Execution — Natural language execution paths leading to RCE, code generation vulnerabilities
- ASI06 Memory & Context Poisoning — Long-term behavior manipulation via memory attacks, context window exploits
- ASI07 Insecure Inter-Agent Communication — Spoofed messages, man-in-the-middle between agents, cluster misdirection
- ASI08 Cascading Failures — False signals propagating through automated pipelines, escalating impact chains
- ASI09 Human-Agent Trust Exploitation — Confident misleading explanations, social engineering of human operators
- ASI10 Rogue Agents — Misalignment, concealment, self-directed action, emergent harmful behavior
Synthesize Findings — Assign severity based on exploitability and deployment context. Provide code locations, configuration gaps, and concrete remediation.

Output

Architecture overview, risk matrix (all 10 categories with status), detailed findings using templates/finding.md, positive controls observed, and prioritized recommendations.

OWASP References

OWASP Top 10 for Agentic Applications 2026
OWASP GenAI Security Project
OWASP Agentic Security Initiative

related-skills.json

같은 저장소

agent-security-audit.md

from "OWASP/secure-agent-playbook"

Audit AI agent configurations for security risks — excessive permissions, prompt injection surfaces, data exfiltration paths, and missing guardrails. Use when reviewing CLAUDE.md files, MCP configs, agent orchestration code, or any AI agent setup.

2026-05-1778

llm-risk-assess.md

from "OWASP/secure-agent-playbook"

Comprehensive LLM security assessment against OWASP Top 10 for LLM Applications 2025. Use when reviewing LLM-integrated applications, RAG pipelines, chatbots, AI agents, or GenAI features. Covers prompt injection, data poisoning, supply chain, excessive agency, and more with real-world attack scenarios and testing methodologies.

2026-05-1778

mcp-server-review.md

from "OWASP/secure-agent-playbook"

Security review of MCP (Model Context Protocol) server implementations and configurations. Use when auditing MCP server source code, evaluating third-party MCP servers before installation, or reviewing Claude Code MCP integrations for overpermissioning, injection risks, and data exposure.

2026-05-1778

prompt-injection-test.md

from "OWASP/secure-agent-playbook"

Test LLM-integrated applications against known prompt injection techniques, evasion methods, and attack intents using the Arcanum PI Taxonomy. Use when red-teaming AI apps, validating guardrails, or deepening LLM01 (Prompt Injection) assessments.

2026-05-1778

api-security-review.md

from "OWASP/secure-agent-playbook"

Comprehensive API security review against OWASP API Security Top 10 (2023). Use when reviewing OpenAPI/Swagger specs, auditing REST/GraphQL/gRPC implementations, testing authentication mechanisms, or checking API gateway configurations. Covers BOLA/IDOR, broken auth, mass assignment, rate limiting, SSRF, and more with real-world attack scenarios.

2026-05-1778

code-review-security.md

from "OWASP/secure-agent-playbook"

Security-focused code review mapped to OWASP Top 10 and ASVS. Use when reviewing pull requests, auditing files or modules for vulnerabilities, or performing pre-merge security gate checks. Covers injection, auth, authorization, cryptography, data exposure, misconfiguration, and deserialization.

2026-05-1778

package.json

"author": "OWASP"

"repository": "OWASP/secure-agent-playbook"

GitHub 저장소 열기 Creator 저장소 보기

$ install --global

$ download --local

Manus에서 실행

$ useful --forSOC

정보 보안 분석가컴퓨터 및 수학직15-1212L4

name	agentic-ai-risk-assess
description	Assess agentic AI applications against the OWASP Top 10 for Agentic Applications 2026. Use when reviewing autonomous AI agents, multi-agent systems, or agentic workflows for security risks including goal hijacking, tool misuse, privilege abuse, and rogue agent behavior.
license	CC-BY-4.0

Agentic AI Risk Assessment

Evaluate agentic AI applications against all 10 risk categories by following the full procedure in plays/agentic-ai-risk-assess.md.

Steps

Architecture Mapping — Identify agent type (single/multi-agent), autonomy level, tool ecosystem, memory systems, inter-agent communication protocols, and human oversight mechanisms.
Assess Each Agentic Top 10 Risk:
- ASI01 Agent Goal Hijack — Hidden prompts, instruction override, silent exfiltration via copilot patterns
- ASI02 Tool Misuse — Legitimate tools bent into destructive outputs, tool parameter manipulation
- ASI03 Identity & Privilege Abuse — Leaked credentials, excessive permissions, agent operating beyond scope
- ASI04 Agentic Supply Chain — Poisoned MCP/A2A components, runtime component tampering, dynamic ecosystem risks
- ASI05 Unexpected Code Execution — Natural language execution paths leading to RCE, code generation vulnerabilities
- ASI06 Memory & Context Poisoning — Long-term behavior manipulation via memory attacks, context window exploits
- ASI07 Insecure Inter-Agent Communication — Spoofed messages, man-in-the-middle between agents, cluster misdirection
- ASI08 Cascading Failures — False signals propagating through automated pipelines, escalating impact chains
- ASI09 Human-Agent Trust Exploitation — Confident misleading explanations, social engineering of human operators
- ASI10 Rogue Agents — Misalignment, concealment, self-directed action, emergent harmful behavior
Synthesize Findings — Assign severity based on exploitability and deployment context. Provide code locations, configuration gaps, and concrete remediation.

Output

Architecture overview, risk matrix (all 10 categories with status), detailed findings using templates/finding.md, positive controls observed, and prioritized recommendations.

OWASP References

OWASP Top 10 for Agentic Applications 2026
OWASP GenAI Security Project
OWASP Agentic Security Initiative

agentic-ai-risk-assess

Agentic AI Risk Assessment

Steps

Output

OWASP References

이 저장소의 다른 Skills

이 저장소의 다른 Skills

Agentic AI Risk Assessment

Steps

Output

OWASP References