AgentReadyHomeAgent Listing

← Soulmaite Io

Soulmaite Io — agentic threat model

6.8AIVSS 6.8 · Medium

Soulmaite Io is a highly personalized, NSFW-capable virtual companion chatbot operating on Telegram. Its primary security risks center heavily on the extreme sensitivity of user-generated conversational data, intimate roleplay, and custom character profiles, rather than autonomous system-level actions.

OWASP AIVSS score rationale

AIVSS = (CVSS_Base + AARS) × Mitigation_Factor, where AARS = (10 − CVSS_Base) × (Factor_Sum / 10) × ThM
CVSS base 6.1AARS uplift 1.4Factor sum 3.6/10Threat ×1.0Mitigation ×0.9
Autonomy of Action
0.20
Goal-Driven Planning
0.10
Self-Modification
0.10
Dynamic Tool Use
0.20
Persistent Memory
0.60
Contextual Awareness
0.50
Dynamic Identity
0.30
Multi-Agent Interactions
0.10
Non-Determinism
0.80
Opacity & Reflexivity
0.70

Scored with the canonical OWASP AIVSS formula (AIVSS calculator reference); agentic risk factors estimated from the agent’s described capabilities.

MAESTRO 7-layer threat model

Per-layer threats for this agent. Layers tagged “not certain from listing” are general, caveated commentary where the public description didn’t pin that layer.

L1 · Foundation Models⚠ not certain from listing

Not certain from the listing — likely utilizes fine-tuned open-source LLMs or uncensored APIs to facilitate NSFW interactions. Primary threats include prompt injection, jailbreaking to bypass basic safety guardrails, and model reprogramming to output malicious content.

L2 · Data Operations⚠ not certain from listing

Not certain from the listing — requires storage of highly sensitive user chat histories, custom character definitions, and generated media (images/audio). Threats include data exfiltration of intimate conversations and unauthorized access to user-specific databases.

L3 · Agent Frameworks⚠ not certain from listing

Not certain from the listing — likely uses a lightweight chatbot orchestration framework integrated with Telegram. Threats include memory poisoning, where malicious user inputs permanently alter the companion's persona or behavior.

L4 · Deployment & Infrastructure⚠ not certain from listing

Not certain from the listing — deployed as a Telegram bot, likely hosted on cloud servers. Key threats include exposure of Telegram API tokens, insecure storage of generated media assets, and server-side compromise.

L5 · Evaluation & Observability⚠ not certain from listing

Not certain from the listing — maintaining the promised 'fully private' environment likely limits telemetry and logging, creating significant blind spots for detecting abuse, system drift, or adversarial attacks.

L6 · Security & Compliance (cross-cutting)⚠ not certain from listing

Not certain from the listing — claims to be 'safe, secure, and fully private' but lacks explicit compliance frameworks (e.g., GDPR, SOC2). Handling highly sensitive personal and adult data without verified compliance poses severe regulatory and privacy risks.

L7 · Agent Ecosystem✓ mapped

The agent operates as a standalone virtual companion on Telegram and does not interact with other agents or marketplaces, resulting in low ecosystem risk.

MAESTRO — the 7-layer agentic threat-modeling framework (Cloud Security Alliance / Ken Huang).