owasp-agentic
What can your TypeScript AI agent do to the real world? Scan your code. See which tool calls have zero checks
Open detection standard -- like Sigma, but for AI agents. 425 rules, shipped in Microsoft AGT, Cisco AI Defense, MISP, OWASP A-S-R-H. 97.1% recall on NVIDIA garak. NIST OSCAL Path 1.
Scan your agentic codebase for unguarded tool calls with real-world side effects
