AgentReadyHomeAgent Listing

← Dream Companion

Dream Companion — agentic threat model

7.5AIVSS 7.5 · High

Dream Companion presents low systemic agentic risk due to its lack of external tool execution or autonomous planning, but poses severe privacy and reputational risks through the potential exposure of highly sensitive, unfiltered NSFW chat logs and generated images.

OWASP AIVSS score rationale

AIVSS = (CVSS_Base + AARS) × Mitigation_Factor, where AARS = (10 − CVSS_Base) × (Factor_Sum / 10) × ThM
CVSS base 6.5AARS uplift 1.01Factor sum 2.9/10Threat ×1.0Mitigation ×1.0
Autonomy of Action
0.10
Goal-Driven Planning
0.10
Self-Modification
0.20
Dynamic Tool Use
0.20
Persistent Memory
0.50
Contextual Awareness
0.40
Dynamic Identity
0.10
Multi-Agent Interactions
0.00
Non-Determinism
0.80
Opacity & Reflexivity
0.50

Scored with the canonical OWASP AIVSS formula (AIVSS calculator reference); agentic risk factors estimated from the agent’s described capabilities.

MAESTRO 7-layer threat model

Per-layer threats for this agent. Layers tagged “not certain from listing” are general, caveated commentary where the public description didn’t pin that layer.

L1 · Foundation Models✓ mapped

Uses LLMs and image generation models (e.g., Stable Diffusion) optimized for unfiltered NSFW content. Primary threats include model reprogramming to generate illegal/harmful content and model exploitation via adversarial prompts.

L2 · Data Operations⚠ not certain from listing

Not certain from the listing — No details on vector databases or RAG are provided, but the system must store user chat history and custom character profiles. The primary threat is the exfiltration of highly sensitive, personally identifiable NSFW chat logs and custom character data.

L3 · Agent Frameworks⚠ not certain from listing

Not certain from the listing — The orchestration framework is unspecified but likely manages character state, memory persistence, and routing to the image generator. Threats include memory poisoning and insecure state management leading to cross-user data leakage.

L4 · Deployment & Infrastructure⚠ not certain from listing

Not certain from the listing — As an open-source project, deployment is user-dependent, but if hosted as a service, threats include container compromise, unauthorized access to GPU resources, and exposure of image generation APIs.

L5 · Evaluation & Observability⚠ not certain from listing

Not certain from the listing — The 'unfiltered' and 'uncensored' nature suggests a deliberate lack of safety guardrails, creating a significant blind spot for monitoring toxic, non-consensual, or illegal content generation.

L6 · Security & Compliance (cross-cutting)⚠ not certain from listing

Not certain from the listing — No compliance certifications or strict identity/access management are detailed. The agent faces high compliance risks regarding data privacy regulations (GDPR/CCPA) due to the highly sensitive nature of user-generated adult content.

L7 · Agent Ecosystem✓ mapped

Operates as a standalone vertical application with no multi-agent or marketplace interactions described. Threats in this layer are minimal, limited to the manual sharing of custom character templates.

MAESTRO — the 7-layer agentic threat-modeling framework (Cloud Security Alliance / Ken Huang).