About this streamFormingAttack vectors and defenses, organized by the kind of agent you run.
Read the charter →
Attack vectors and defenses, organized by the kind of agent you run. An always-on assistant, a workflow agent, an internal agent, and an external-facing agent have different exposure, so they need different checklists. This stream builds and maintains them.
Attack vectors and incident patterns
Deployment best practices per agent type
A maintained community security checklist, authored by active participants, aiming to become the reference for deploying agents, possibly including minimum requirements
While this stream is forming, scope is read broadly. If it plausibly fits the purpose, post it. The scope tightens as the group matures.
An alert channel for security events in the agent space, such as supply-chain attacks and known agent-assisted attacks, so a CISO member hears about incidents without watching feeds around the clock.
Naming the agent archetypes and drafting the first checklist.
Work streams are not standards bodies. The goal is shared understanding: what exists, who uses what, and what holds up in practice. If real alignment emerges across companies, Agent Community can help guide early convergence, and hand mature work to a major standards organization once there is agreement, deployment, and usage. A spec written in a weekend is a conversation starter, not a draft standard.