AgentReadyHomeAgent Listing

← Fiddler AI

Fiddler AI — agentic threat model

6.0AIVSS 6.0 · Medium

Fiddler AI is an observability and guardrail platform rather than an autonomous acting agent, presenting low direct agentic risk but high systemic risk as a centralized point of failure for LLM security and monitoring.

OWASP AIVSS score rationale

AIVSS = (CVSS_Base + AARS) × Mitigation_Factor, where AARS = (10 − CVSS_Base) × (Factor_Sum / 10) × ThM
CVSS base 7.5AARS uplift 0.53Factor sum 2.1/10Threat ×1.0Mitigation ×0.75
Autonomy of Action
0.20
Goal-Driven Planning
0.10
Self-Modification
0.10
Dynamic Tool Use
0.20
Persistent Memory
0.20
Contextual Awareness
0.60
Dynamic Identity
0.10
Multi-Agent Interactions
0.10
Non-Determinism
0.30
Opacity & Reflexivity
0.20

Scored with the canonical OWASP AIVSS formula (AIVSS calculator reference); agentic risk factors estimated from the agent’s described capabilities.

MAESTRO 7-layer threat model

Per-layer threats for this agent. Layers tagged “not certain from listing” are general, caveated commentary where the public description didn’t pin that layer.

L1 · Foundation Models⚠ not certain from listing

Not certain from the listing — Fiddler uses task-specific, Fiddler-developed trust models. Threats include adversarial evasion of these moderation models or model stealing of Fiddler's proprietary trust models.

L2 · Data Operations⚠ not certain from listing

Not certain from the listing — Fiddler ingests and processes massive streams of traces, spans, and evaluation data. Threats include data exfiltration of sensitive prompt/response payloads stored in logs, or poisoning of baseline datasets used for drift detection.

L3 · Agent Frameworks⚠ not certain from listing

Not certain from the listing — Fiddler is an observability tool rather than an agent framework. Threats include insecure integration where client-side orchestration frameworks fail to properly block traffic when Fiddler triggers a guardrail violation.

L4 · Deployment & Infrastructure✓ mapped

Fiddler supports cloud and VPC deployments for secure environments. Threats include container compromise or unauthorized network access to the VPC hosting the Fiddler Trust Service, allowing attackers to intercept raw LLM traffic.

L5 · Evaluation & Observability✓ mapped

This is Fiddler's core layer, offering LLM Guardrails, Traces and Spans, and Fairness tracking. Threats include guardrail bypass (e.g., novel jailbreaks), evaluation gaming, and blind spots in drift detection algorithms.

L6 · Security & Compliance (cross-cutting)✓ mapped

Fiddler provides centralized controls and responsible governance. Threats include unauthorized administrative access to the Fiddler platform, allowing malicious actors to disable guardrails, alter bias thresholds, or delete audit logs.

L7 · Agent Ecosystem⚠ not certain from listing

Not certain from the listing — Fiddler monitors LLM applications but does not explicitly detail multi-agent ecosystem interactions. Threats include cascading monitoring failures if a compromised upstream agent feeds malformed telemetry that crashes the Fiddler ingestion pipeline.

MAESTRO — the 7-layer agentic threat-modeling framework (Cloud Security Alliance / Ken Huang).