AgentReadyHomeAgent Listing

← Banana peel prompt

Banana peel prompt — agentic threat model

2.7AIVSS 2.7 · Low

The agent is a static prompt library with virtually zero agentic capabilities, presenting an extremely low risk profile. Security concerns are limited to traditional web hosting vulnerabilities and the potential for serving poisoned or offensive prompts.

OWASP AIVSS score rationale

AIVSS = (CVSS_Base + AARS) × Mitigation_Factor, where AARS = (10 − CVSS_Base) × (Factor_Sum / 10) × ThM
CVSS base 2.5AARS uplift 0.2Factor sum 0.3/10Threat ×0.9Mitigation ×1.0
Autonomy of Action
0.00
Goal-Driven Planning
0.00
Self-Modification
0.00
Dynamic Tool Use
0.00
Persistent Memory
0.00
Contextual Awareness
0.10
Dynamic Identity
0.00
Multi-Agent Interactions
0.00
Non-Determinism
0.10
Opacity & Reflexivity
0.10

Scored with the canonical OWASP AIVSS formula (AIVSS calculator reference); agentic risk factors estimated from the agent’s described capabilities.

MAESTRO 7-layer threat model

Per-layer threats for this agent. Layers tagged “not certain from listing” are general, caveated commentary where the public description didn’t pin that layer.

L1 · Foundation Models⚠ not certain from listing

Not certain from the listing — The agent itself is a prompt library for Google Gemini (Nano Banana Pro model) rather than hosting a foundation model directly. Risks at this layer relate to the downstream Gemini model's susceptibility to prompt injection or generating harmful images using these prompts.

L2 · Data Operations✓ mapped

The agent serves a static or weekly updated database of 1000+ prompts. Risks include database poisoning or unauthorized modification of the prompt library to serve malicious or offensive prompts.

L3 · Agent Frameworks✓ mapped

This is a prompt library, not an active agent framework. There is no orchestration, planning, or tool-calling code, meaning traditional agent framework vulnerabilities are absent.

L4 · Deployment & Infrastructure⚠ not certain from listing

Not certain from the listing — The infrastructure hosting the web directory or API is unspecified. Standard web application vulnerabilities (e.g., XSS, defacement, API abuse) apply to the hosting platform.

L5 · Evaluation & Observability⚠ not certain from listing

Not certain from the listing — No mention of evaluation, monitoring, or guardrails for the served prompts. There is a risk of serving outdated or broken prompts if Gemini's underlying model updates.

L6 · Security & Compliance (cross-cutting)✓ mapped

The listing explicitly states 'no registration required, no data collection', indicating a minimal privacy footprint, but there are no formal security compliance controls (e.g., SOC2, OAuth) mentioned.

L7 · Agent Ecosystem✓ mapped

No multi-agent or marketplace interactions are supported. The ecosystem risk is limited to users copying prompts into external systems like Google Gemini.

MAESTRO — the 7-layer agentic threat-modeling framework (Cloud Security Alliance / Ken Huang).