AgentReadyHomeAgent Listing

← internal-comms

internal-comms — agentic threat model

3.7AIVSS 3.7 · Low

This agent is a low-risk, template-routing utility designed for formatting internal communications. It operates with minimal autonomy, relying entirely on static local markdown templates without executing code or calling external APIs.

OWASP AIVSS score rationale

AIVSS = (CVSS_Base + AARS) × Mitigation_Factor, where AARS = (10 − CVSS_Base) × (Factor_Sum / 10) × ThM
CVSS base 3.3AARS uplift 0.78Factor sum 1.3/10Threat ×0.9Mitigation ×0.9
Autonomy of Action
0.10
Goal-Driven Planning
0.20
Self-Modification
0.00
Dynamic Tool Use
0.10
Persistent Memory
0.00
Contextual Awareness
0.30
Dynamic Identity
0.00
Multi-Agent Interactions
0.00
Non-Determinism
0.40
Opacity & Reflexivity
0.20

Scored with the canonical OWASP AIVSS formula (AIVSS calculator reference); agentic risk factors estimated from the agent’s described capabilities.

MAESTRO 7-layer threat model

Per-layer threats for this agent. Layers tagged “not certain from listing” are general, caveated commentary where the public description didn’t pin that layer.

L1 · Foundation Models✓ mapped

Relies on Anthropic foundation models. Vulnerable to prompt injection that could bypass company-specific tone and structure guidelines, potentially generating inappropriate or misleading internal communications.

L2 · Data Operations✓ mapped

Reads bundled example guideline files (3p-updates, company-newsletter, faq-answers, general-comms). Risk is limited to local file tampering or poisoning of these static templates if the deployment environment is compromised.

L3 · Agent Frameworks✓ mapped

Orchestration is limited to routing requests to matching guideline files. No executable scripts or dynamic tool calling are supported, minimizing framework-level execution threats.

L4 · Deployment & Infrastructure⚠ not certain from listing

Not certain from the listing — assumes standard local or containerized deployment where the primary risk is unauthorized access to the host system hosting the guideline files.

L5 · Evaluation & Observability⚠ not certain from listing

Not certain from the listing — no built-in evaluation, logging, or guardrail mechanisms are mentioned for verifying that output communications strictly adhere to the selected templates.

L6 · Security & Compliance (cross-cutting)⚠ not certain from listing

Not certain from the listing — lacks explicit mention of access controls, identity management, or audit logging to restrict who can trigger specific communication templates.

L7 · Agent Ecosystem✓ mapped

Operates as an isolated single-agent skill with no multi-agent coordination or ecosystem marketplace interactions described.

MAESTRO — the 7-layer agentic threat-modeling framework (Cloud Security Alliance / Ken Huang).