Durable AI — agentic threat model
Durable AI presents a moderate-to-high risk profile due to its integration of AI-driven website generation with sensitive business operations like CRM, invoicing, and domain hosting, which could be abused for automated phishing or financial fraud if compromised.
OWASP AIVSS score rationale
| Autonomy of Action | 0.40 | |
| Goal-Driven Planning | 0.50 | |
| Self-Modification | 0.10 | |
| Dynamic Tool Use | 0.50 | |
| Persistent Memory | 0.60 | |
| Contextual Awareness | 0.50 | |
| Dynamic Identity | 0.20 | |
| Multi-Agent Interactions | 0.10 | |
| Non-Determinism | 0.70 | |
| Opacity & Reflexivity | 0.40 |
Scored with the canonical OWASP AIVSS formula (AIVSS calculator reference); agentic risk factors estimated from the agent’s described capabilities.
MAESTRO 7-layer threat model
Per-layer threats for this agent. Layers tagged “not certain from listing” are general, caveated commentary where the public description didn’t pin that layer.
Not certain from the listing — The underlying LLMs used for generating marketing copy and website layouts are unspecified. Primary threats include prompt injection leading to the generation of malicious scripts (XSS) or deceptive phishing content within the generated website.
Not certain from the listing — The platform stores user business details, CRM contacts, and invoicing data. Threats include unauthorized access to tenant databases, data leakage between client accounts, and lack of clear data retention policies for sensitive customer PII.
Not certain from the listing — The orchestration framework translating user prompts into structured websites, CRM schemas, and invoices is proprietary. Vulnerabilities could allow attackers to manipulate tool-calling mechanisms to generate unauthorized invoices or modify DNS settings.
Not certain from the listing — While the listing mentions domain hosting with SSL security, the underlying hosting infrastructure and sandboxing of generated code are undisclosed. Threats include server-side SSRF, sub-domain hijacking, and hosting-level resource exhaustion.
Not certain from the listing — There is no mention of automated guardrails or content moderation to prevent the platform from being used to generate malicious, fraudulent, or policy-violating websites at scale.
Not certain from the listing — Although SSL is provided, compliance with critical standards such as GDPR (for CRM data) and PCI-DSS (for invoicing/payments) is not explicitly detailed in the public directory listing.
Not certain from the listing — The platform operates as a standalone horizontal solution. There is no evidence of multi-agent collaboration or third-party agent marketplace integrations that would introduce cascading ecosystem risks.
MAESTRO — the 7-layer agentic threat-modeling framework (Cloud Security Alliance / Ken Huang).