AgentReadyHomeAgent Listing

← Hummans

Hummans — agentic threat model

8.3AIVSS 8.3 · High

Hummans poses a moderate-to-high risk due to its integration with sensitive Google Analytics data and its capability to generate training materials for downstream AI agents, creating a potential vector for data exfiltration and downstream training data poisoning.

OWASP AIVSS score rationale

AIVSS = (CVSS_Base + AARS) × Mitigation_Factor, where AARS = (10 − CVSS_Base) × (Factor_Sum / 10) × ThM
CVSS base 7.5AARS uplift 0.78Factor sum 3.1/10Threat ×1.0Mitigation ×1.0
Autonomy of Action
0.40
Goal-Driven Planning
0.30
Self-Modification
0.00
Dynamic Tool Use
0.50
Persistent Memory
0.20
Contextual Awareness
0.50
Dynamic Identity
0.10
Multi-Agent Interactions
0.40
Non-Determinism
0.40
Opacity & Reflexivity
0.30

Scored with the canonical OWASP AIVSS formula (AIVSS calculator reference); agentic risk factors estimated from the agent’s described capabilities.

MAESTRO 7-layer threat model

Per-layer threats for this agent. Layers tagged “not certain from listing” are general, caveated commentary where the public description didn’t pin that layer.

L1 · Foundation Models⚠ not certain from listing

Not certain from the listing — the underlying LLM is not specified. Threats include prompt injection altering the generated insights or training documents, and potential model bias affecting business decisions.

L2 · Data Operations✓ mapped

The agent ingests Google Analytics data and outputs training documents. Threats include data exfiltration of sensitive GA metrics, unauthorized access via OAuth, and data poisoning of the generated training documents.

L3 · Agent Frameworks⚠ not certain from listing

Not certain from the listing — the orchestration framework is not disclosed. Threats include insecure tool integration with the Google Analytics API and potential command injection if the document generation tool is poorly sandboxed.

L4 · Deployment & Infrastructure⚠ not certain from listing

Not certain from the listing — hosting and sandboxing details are not provided. Threats include insecure storage of Google Analytics OAuth tokens and potential container compromise.

L5 · Evaluation & Observability⚠ not certain from listing

Not certain from the listing — no monitoring, logging, or guardrails are mentioned. Threats include a lack of detection for anomalous data queries or poisoned outputs.

L6 · Security & Compliance (cross-cutting)✓ mapped

The agent requires Google Analytics connection, implying OAuth/identity management. Threats include weak token management, lack of granular scopes (requesting too much GA access), and compliance risks (GDPR/CCPA) regarding analytics data processing.

L7 · Agent Ecosystem✓ mapped

The agent explicitly generates training documents to 'train your AI agents'. Threats include downstream agent poisoning (supplying malicious or manipulated training data to other agents in the ecosystem).

MAESTRO — the 7-layer agentic threat-modeling framework (Cloud Security Alliance / Ken Huang).