AgentReadyHomeAgent Listing

← Leni

Leni — agentic threat model

7.2AIVSS 7.2 · High

Leni presents a moderate-to-high risk profile primarily centered on its access to sensitive real estate portfolio and financial data via Leni Base. While its on-premise deployment model (Leni Mind) mitigates external cloud exposure, compromise of the underlying data layer or predictive intelligence tools could lead to significant financial data exfiltration or manipulation.

OWASP AIVSS score rationale

AIVSS = (CVSS_Base + AARS) × Mitigation_Factor, where AARS = (10 − CVSS_Base) × (Factor_Sum / 10) × ThM
CVSS base 7.5AARS uplift 0.93Factor sum 3.7/10Threat ×1.0Mitigation ×0.85
Autonomy of Action
0.30
Goal-Driven Planning
0.40
Self-Modification
0.10
Dynamic Tool Use
0.50
Persistent Memory
0.40
Contextual Awareness
0.70
Dynamic Identity
0.20
Multi-Agent Interactions
0.20
Non-Determinism
0.50
Opacity & Reflexivity
0.40

Scored with the canonical OWASP AIVSS formula (AIVSS calculator reference); agentic risk factors estimated from the agent’s described capabilities.

MAESTRO 7-layer threat model

Per-layer threats for this agent. Layers tagged “not certain from listing” are general, caveated commentary where the public description didn’t pin that layer.

L1 · Foundation Models⚠ not certain from listing

Not certain from the listing — Leni's underlying LLMs are not specified. If deployed on-premise via Leni Mind, risks include model reprogramming or misaligned outputs if the local model is not properly aligned or if adversarial prompts bypass local system instructions.

L2 · Data Operations✓ mapped

Leni Base acts as a unified data layer for real estate datasets. This presents a high-value target for data exfiltration, database injection, or knowledge-base poisoning, which could corrupt predictive intelligence and financial KPIs.

L3 · Agent Frameworks⚠ not certain from listing

Not certain from the listing — the orchestration framework is proprietary or unspecified. The primary threat is insecure tool integration between the LLM and the unified data layer, potentially allowing SQL injection or unauthorized data access via natural language queries.

L4 · Deployment & Infrastructure✓ mapped

Leni Mind supports secure, on-premise deployment. While this reduces cloud-based exposure, it introduces risks of host/container compromise within the enterprise network and requires robust local sandboxing to prevent lateral movement.

L5 · Evaluation & Observability⚠ not certain from listing

Not certain from the listing — no specific evaluation or logging frameworks are detailed. Gaps in monitoring could lead to undetected drift in predictive intelligence models or silent failures in KPI calculations.

L6 · Security & Compliance (cross-cutting)✓ mapped

Leni emphasizes 'maximum control and flexibility' through on-premise deployment, which aligns with strict data sovereignty requirements. However, the listing does not explicitly cite compliance certifications (e.g., SOC2, ISO 27001), requiring rigorous local access controls and auditing.

L7 · Agent Ecosystem⚠ not certain from listing

Not certain from the listing — there is no mention of multi-agent orchestration or external marketplace integrations. The primary ecosystem risk is limited to third-party real estate API integrations used to feed Leni Base.

MAESTRO — the 7-layer agentic threat-modeling framework (Cloud Security Alliance / Ken Huang).