AgentReadyHomeAgent Listing

← Launch Agents

Launch Agents — agentic threat model

9.5AIVSS 9.5 · Critical

Launch Agents presents a high-risk profile due to its autonomous multi-agent capabilities and direct integration with sensitive business tools like databases and spreadsheets, without any documented security controls or sandboxing.

OWASP AIVSS score rationale

AIVSS = (CVSS_Base + AARS) × Mitigation_Factor, where AARS = (10 − CVSS_Base) × (Factor_Sum / 10) × ThM
CVSS base 8.5AARS uplift 0.99Factor sum 6.3/10Threat ×1.05Mitigation ×1.0
Autonomy of Action
0.80
Goal-Driven Planning
0.80
Self-Modification
0.20
Dynamic Tool Use
0.80
Persistent Memory
0.50
Contextual Awareness
0.70
Dynamic Identity
0.30
Multi-Agent Interactions
0.90
Non-Determinism
0.70
Opacity & Reflexivity
0.60

Scored with the canonical OWASP AIVSS formula (AIVSS calculator reference); agentic risk factors estimated from the agent’s described capabilities.

MAESTRO 7-layer threat model

Per-layer threats for this agent. Layers tagged “not certain from listing” are general, caveated commentary where the public description didn’t pin that layer.

L1 · Foundation Models⚠ not certain from listing

Not certain from the listing — the underlying foundation models are not specified. Threats include prompt injection hijacking the workflow generation or model reprogramming during deep research tasks.

L2 · Data Operations⚠ not certain from listing

Not certain from the listing — although it connects to databases, spreadsheets, and documents, the specific RAG architecture or vector database implementation is not described. Threats include data exfiltration of sensitive candidate or company data.

L3 · Agent Frameworks✓ mapped

The platform orchestrates workflows and integrates directly with software tools like databases and spreadsheets. Threats include insecure tool integration, tool misuse (e.g., destructive database queries), and malicious input leading to unauthorized tool execution.

L4 · Deployment & Infrastructure⚠ not certain from listing

Not certain from the listing — hosting, sandboxing of tool execution, and secrets management for database/API integrations are not described. Threats include container compromise or credential theft from integrated software tools.

L5 · Evaluation & Observability⚠ not certain from listing

Not certain from the listing — no mention of monitoring, logging, or guardrails for the autonomous agents. Threats include blind spots in multi-agent execution and lack of audit trails for automated actions.

L6 · Security & Compliance (cross-cutting)⚠ not certain from listing

Not certain from the listing — no security certifications (e.g., SOC2, ISO) or compliance frameworks are mentioned despite handling sensitive HR/candidate and business database data.

L7 · Agent Ecosystem✓ mapped

The listing explicitly states agents 'work with other agents autonomously'. Threats include rogue/compromised peer agents, cascading failures across agent-to-agent workflows, and unauthorized delegation of tasks.

MAESTRO — the 7-layer agentic threat-modeling framework (Cloud Security Alliance / Ken Huang).