Home

Awesome

OWASP Top 10 for AI Agents - Candidate Framework

Overview

This project documents the top 10 security risks specifically related to AI Agents, representing a comprehensive analysis of vulnerabilities unique to autonomous AI systems. The document provides detailed descriptions, examples, and mitigation strategies for each risk, helping organizations secure their AI agent deployments effectively.

Purpose

As AI agents become increasingly prevalent because GenAI models, understanding and mitigating their security risks becomes crucial. This guide aims to:

Project Structure

The documentation is organized into top ten main security risks, each covering a specific risk category:

  1. Agent Authorization and Control Hijacking
  2. Agent Untraceability
  3. Agent Critical Systems Interaction
  4. Agent Goal and Instruction Manipulation
  5. Agent Hallucination Exploitation
  6. Agent Impact Chain and Blast Radius
  7. Agent Memory and Context Manipulation
  8. Agent Orchestration and Multi-Agent Exploitation
  9. Agent Resource and Service Exhaustion
  10. Agent Supply Chain and Dependency Attacks

Future

  1. Agent Knowledge Base Poisoning (for future, may merge with SupplyChain)
  2. Agent Checker out of the loop vulnerability

Roadmap

Contributors

Editors

Authors

Contributors

Content Reviewers

This project has been made possible through the support and contributions of professionals from leading organizations including:

License

This project is part of OWASP and follows OWASP's licensing terms.

How to Contribute

We welcome contributions from the security community. Please see our contribution guidelines for more information on how to participate in this project.

Contact

For questions, suggestions, or concerns, please open an issue in this repository or contact the project maintainers.

Acknowledgments

Special thanks to all contributors who have dedicated their time and expertise to make this project possible, and to the organizations that have supported their participation in this important security initiative.

This document will be maintained by the OWASP community and represents a collaborative effort to improve security in AI agent systems.