---

name: agentsecly-ai-agent-security description: Generate AI agent security advisories with threat analysis, MITRE ATT&CK mapping, and remediation guidance. Use when assessing AI agent security risks, evaluating prompt injection threats, analyzing data leakage risks from AI agents, securing autonomous AI systems, or building AI agent security policies. version: 1.0.0 homepage: https://portal.toolweb.in metadata: openclaw: emoji: "🤖" requires: env: - TOOLWEB_API_KEY bins: - curl primaryEnv: TOOLWEB_API_KEY os: - linux - darwin - win32 category: security

AgentSecly — AI Agent Security Advisory 🤖🔐

Generate comprehensive security advisories for AI agents with threat analysis, severity scoring, MITRE ATT&CK mapping, and remediation guidance. Covers prompt injection, data leakage, model manipulation, unauthorized access, and more — tailored to specific agent types like SOC analysts, chatbots, autonomous security agents, and code analysis tools.

Built by a CISSP/CISM certified security professional at ToolWeb.in

When to Use

• User asks about AI agent security risks or threats
• User wants to assess security of their AI agent deployment
• User mentions prompt injection, data leakage, or model manipulation threats
• User needs security guidance for autonomous AI systems
• User asks about securing OpenClaw, chatbots, or AI assistants
• User wants MITRE ATT&CK mapping for AI-specific threats
• User needs an AI agent security advisory or risk assessment

Prerequisites

• TOOLWEB_API_KEY — Get your API key from portal.toolweb.in
• curl must be available on the system

API Endpoint

POST https://portal.toolweb.in/apis/security/agentsecly

Threat Categories

Key	Threat	Severity Base
prompt_injection	Prompt Injection / Jailbreak	75
data_leakage	Data Leakage / Exfiltration	85
model_manipulation	Model Manipulation / Poisoning	80
unauthorized_access	Unauthorized Access / Auth Bypass	90

Agent Profiles

Profile	Risk Multiplier	Key Concerns
autonomous_security	1.3x	Unauthorized actions, false positive escalation
soc_analyst	1.2x	Alert manipulation, investigation tampering
threat_detection	1.25x	Detection bypass, signature manipulation
incident_response	1.35x	Improper containment
vulnerability_scanner	1.15x	Scan evasion
code_analysis	1.1x	Code injection
chatbot_assistant	—	Data exposure, prompt injection

Workflow

1. Gather inputs from the user:

   Required:

   • threatTitle — Short title of the threat (e.g., "Prompt Injection Attack on Customer Support Bot")
   • threatDescription — Detailed description of the threat scenario
   • threatCategory — One of: "prompt_injection", "data_leakage", "model_manipulation", "unauthorized_access"
   • environment — Deployment environment (e.g., "Production cloud environment", "On-premise SOC", "Hybrid infrastructure")
   • impact — Expected impact level (e.g., "High - customer data exposure", "Critical - autonomous action compromise")
   • sensitivity — Data sensitivity level (e.g., "High", "Medium", "Low", "Critical")

   Optional:

   • agentTypes — List of agent profiles affected, e.g., ["chatbot_assistant", "soc_analyst"] (default: [])
   • capabilities — Agent capabilities at risk, e.g., ["web_browsing", "file_access", "code_execution", "api_calls"] (default: [])
   • securityControls — Existing security controls, e.g., ["input_validation", "output_filtering", "rate_limiting", "audit_logging"] (default: [])

2. Call the API:

curl -s -X POST "https://portal.toolweb.in/apis/security/agentsecly" \
  -H "Content-Type: application/json" \
  -H "X-API-Key: $TOOLWEB_API_KEY" \
  -d '{
    "assessmentData": {
      "threatTitle": "<title>",
      "threatDescription": "<description>",
      "threatCategory": "<category>",
      "agentTypes": ["<agent_type1>"],
      "capabilities": ["<capability1>"],
      "environment": "<environment>",
      "securityControls": ["<control1>"],
      "impact": "<impact>",
      "sensitivity": "<sensitivity>",
      "timestamp": "<ISO-timestamp>"
    },
    "sessionId": "<unique-id>",
    "timestamp": "<ISO-timestamp>"
  }'

3. Present results with severity score, MITRE mapping, and remediation.

Output Format

🤖 AI Agent Security Advisory
━━━━━━━━━━━━━━━━━━━━━━━━━━━━━

Threat: [threatTitle]
Category: [threatCategory]
Severity: [score]/100 — [Critical/High/Medium/Low]

🎯 MITRE ATT&CK Mapping:
  [Tactic IDs and names]

⚠️ Threat Analysis:
  [Detailed analysis of the threat vector]

🛡️ Agent Profiles Affected:
  [Agent types and specific concerns]

🔧 Remediation Actions:
  1. [Immediate action] — Priority: Critical
  2. [Short-term action] — Priority: High
  3. [Long-term action] — Priority: Medium

📋 Security Controls Recommended:
  [Specific controls to implement]

📎 Full advisory powered by ToolWeb.in

Error Handling

• If TOOLWEB_API_KEY is not set: Tell the user to get an API key from https://portal.toolweb.in
• If the API returns 401: API key is invalid or expired
• If the API returns 422: Check required fields in assessmentData
• If the API returns 429: Rate limit exceeded — wait and retry after 60 seconds

Example Interaction

User: "Assess the prompt injection risk for our customer support chatbot"

Agent flow:

1. Ask: "I'll generate a security advisory. Tell me:
   • What environment is the chatbot deployed in?
   • What capabilities does it have (web browsing, file access, API calls)?
   • What existing security controls do you have?
   • How sensitive is the data it handles?"
2. User responds with details
3. Call API:

curl -s -X POST "https://portal.toolweb.in/apis/security/agentsecly" \
  -H "Content-Type: application/json" \
  -H "X-API-Key: $TOOLWEB_API_KEY" \
  -d '{
    "assessmentData": {
      "threatTitle": "Prompt Injection on Customer Support Chatbot",
      "threatDescription": "Risk of malicious prompts bypassing safety controls to extract customer PII or manipulate chatbot responses",
      "threatCategory": "prompt_injection",
      "agentTypes": ["chatbot_assistant"],
      "capabilities": ["web_browsing", "api_calls"],
      "environment": "Production cloud (AWS)",
      "securityControls": ["input_validation", "rate_limiting"],
      "impact": "High - customer PII exposure",
      "sensitivity": "High",
      "timestamp": "2026-03-14T12:00:00Z"
    },
    "sessionId": "sess-20260314-001",
    "timestamp": "2026-03-14T12:00:00Z"
  }'

4. Present severity score, MITRE mapping, and remediation steps

Pricing

• API access via portal.toolweb.in subscription plans
• Free trial: 10 API calls/day, 50 API calls/month to test the skill
• Developer: $39/month — 20 calls/day and 500 calls/month
• Professional: $99/month — 200 calls/day, 5000 calls/month
• Enterprise: $299/month — 100K calls/day, 1M calls/month

About

Created by ToolWeb.in — a security-focused MicroSaaS platform with 200+ security APIs, built by a CISSP & CISM certified professional. Trusted by security teams in USA, UK, and Europe and we have platforms for "Pay-per-run", "API Gateway", "MCP Server", "OpenClaw", "RapidAPI" for execution and YouTube channel for demos.

• 🌐 Toolweb Platform: https://toolweb.in
• 🔌 API Hub (Kong): https://portal.toolweb.in
• 🎡 MCP Server: https://hub.toolweb.in
• 🦞 OpenClaw Skills: https://toolweb.in/openclaw/
• 🛒 RapidAPI: https://rapidapi.com/user/mkrishna477
• 📺 YouTube demos: https://youtube.com/@toolweb-009

Related Skills

• ISO 42001 AIMS Readiness — AI governance compliance
• Threat Assessment & Defense Guide — General threat modeling
• Web Vulnerability Assessment — Web app security
• IT Risk Assessment Tool — IT risk scoring
• OT Security Posture Scorecard — OT/ICS security

Tips

• OpenClaw users: use this skill to assess the security of your own OpenClaw agent setup
• Combine threat categories with agent profiles for the most accurate severity scoring
• Include all agent capabilities for comprehensive risk analysis
• List existing security controls to get gap-focused recommendations
• Run advisories for each threat category to build a complete AI agent security posture