ai risk today logo svg bl font
Menu
SUBSCRIBE
SUBSCRIBE
ai risk today logo svg bl font
Menu
OWASP Releases First Top 10 Risk List For Agentic AI Applications
Photo credit: OWASP / public domain

OWASP Releases First Top 10 Risk List For Agentic AI Applications

The list identifies key security risks and mitigation guidance for autonomous artificial intelligence systems.


The Open Worldwide Application Security Project (OWASP) released its first OWASP Top 10 for Agentic Applications, a list of principal security risks and mitigation guidance for autonomous artificial intelligence (AI) systems that make decisions and take actions with limited human oversight. The list was published by the OWASP GenAI Security Project following more than a year of research and review by industry practitioners, security researchers, and technical contributors.

The Top 10 list outlines categories of security concerns, including agent goal hijacking, tool misuse and exploitation, identity and privilege abuse, supply chain vulnerabilities, unexpected code execution, memory and context poisoning, insecure inter-agent communication, cascading failures, human-agent trust exploitation, and rogue agents. These categories are intended to help organizations identify and address risks specific to agentic AI applications, which differ from those associated with traditional software vulnerabilities.

The guidance applies to technology developers, security teams, and organizations that deploy or manage agentic AI systems. The project describes agentic AI as systems capable of planning, coordinating, accessing data, interacting with tools, and executing workflows without continuous human control.

“The OWASP Top 10 for Agentic Applications is grounded in deep technical analysis and broad industry collaboration,” said Hyrum Anderson, senior director of AI and security at Cisco, in an OWASP statement. “The rigor behind this list provides more than a summary of concerns – it’s a thoroughly validated foundation you can safely anchor your security attention to.”

OWASP said the list is part of a broader portfolio of resources the GenAI Security Project has published, including threat modelling guides and development best practices designed to help practitioners secure agentic AI from design through deployment.

The Top 10 for Agentic Applications complements OWASP’s existing security frameworks and serves as a shared reference for risk identification and mitigation as autonomous AI adoption grows.

Clayton Rifkind

Clayton Rifkind is the Founder and Senior Editor of AI Risk Today. He also advises on content development for esgtoday.com, a leading source of ESG investment news and research for institutional investors and corporate leaders. He has 20+ years experience in B2B technology marketing, leading strategy and execution of go-to-market plans across software, enterprise platforms, and mobile applications. He also founded two marketing consultancies, advising startups and Fortune 1000 companies, including Autodesk, Intel, and Microsoft. Clayton began his career in the San Francisco advertising scene, working with brands such as Hewlett-Packard, Intel, Microsoft, Symantec, and Wells Fargo.

Essential AI Risk Intelligence

Daily insights on AI governance, regulation, and enterprise risk management. Trusted by Chief Risk Officers and compliance leaders globally.

SUBSCRIBE

By subscribing, you agree to receive our daily newsletter. Unsubscribe anytime.

Advertise with AI RIsk Today, Today!