AgentReadyHomeAgent Listing

← Doculator

Doculator — agentic threat model

7.8AIVSS 7.8 · High

Doculator is a low-autonomy utility agent focused on document translation; its primary security risks stem from processing untrusted, multi-format file uploads and the potential exposure of sensitive user data during processing.

OWASP AIVSS score rationale

AIVSS = (CVSS_Base + AARS) × Mitigation_Factor, where AARS = (10 − CVSS_Base) × (Factor_Sum / 10) × ThM
CVSS base 7.5AARS uplift 0.28Factor sum 1.1/10Threat ×1.0Mitigation ×1.0
Autonomy of Action
0.10
Goal-Driven Planning
0.10
Self-Modification
0.00
Dynamic Tool Use
0.20
Persistent Memory
0.00
Contextual Awareness
0.20
Dynamic Identity
0.00
Multi-Agent Interactions
0.00
Non-Determinism
0.30
Opacity & Reflexivity
0.20

Scored with the canonical OWASP AIVSS formula (AIVSS calculator reference); agentic risk factors estimated from the agent’s described capabilities.

MAESTRO 7-layer threat model

Per-layer threats for this agent. Layers tagged “not certain from listing” are general, caveated commentary where the public description didn’t pin that layer.

L1 · Foundation Models✓ mapped

Uses advanced foundation LLMs for translation. Primary threats include indirect prompt injection via text embedded in uploaded documents (e.g., instructions telling the model to ignore previous instructions or output malicious content) and model misalignment.

L2 · Data Operations✓ mapped

Processes a wide variety of file formats (50+ including PDF, Word, Excel, MP4). Threats include data exfiltration, processing of malicious payloads embedded in documents, and lack of clarity on whether user data is used to train future models.

L3 · Agent Frameworks⚠ not certain from listing

Not certain from the listing — the agent appears to function as a straightforward translation pipeline rather than a complex planning agent, but vulnerabilities in the orchestration framework or file-parsing libraries could lead to denial of service or arbitrary code execution.

L4 · Deployment & Infrastructure⚠ not certain from listing

Not certain from the listing — processing complex and potentially untrusted file formats (like MP4 and macro-enabled Excel files) requires robust server-side sandboxing to prevent container escape, privilege escalation, or lateral movement.

L5 · Evaluation & Observability⚠ not certain from listing

Not certain from the listing — there is no mention of translation quality guardrails, toxic content filtering, or logging mechanisms to detect and prevent abuse or data leakage.

L6 · Security & Compliance (cross-cutting)⚠ not certain from listing

Not certain from the listing — no explicit details are provided regarding data retention policies, encryption in transit/at rest, or compliance with regulations like GDPR/CCPA for handled documents.

L7 · Agent Ecosystem✓ mapped

The agent operates as a standalone utility with no multi-agent or ecosystem marketplace interactions described, making ecosystem-specific threats minimal.

MAESTRO — the 7-layer agentic threat-modeling framework (Cloud Security Alliance / Ken Huang).