OWASP Agentic Security Top 10 defensive implementations
Project description
aumos-owasp-defenses
OWASP Agentic Security Top 10 defensive implementations
Part of the AumOS open-source agent infrastructure portfolio.
Features
- Ten discrete defense modules aligned to the OWASP Agentic Security Top 10 (ASI-01 through ASI-10), each independently importable and composable
AgentScannerperforms structural analysis of an agent configuration dict and scores all ten ASI categories with findings, recommendations, and a letter grade (A–F)- Four scan profiles —
standard,quick,mcp_focused, andcompliance(stricter thresholds) — so CI pipelines can tune thoroughness vs. speed - Defense primitives include
BoundaryDetector,SchemaValidator,RateLimiter,CapabilityChecker,VendorVerifier,ScopeLimiter,ProvenanceTracker,MessageValidator,CircuitBreaker,TrustVerifier,BaselineProfiler, andDriftDetector - Middleware guards for LangChain, CrewAI, and generic ASGI/callable stacks that wrap existing agents without requiring internal changes
agentcorebridge hooks the scanner into theEventBusso defense checks fire automatically on lifecycle events- Report generator produces per-category results with actionable remediation steps in JSON or Markdown
Quick Start
Install from PyPI:
pip install aumos-owasp-defenses
Verify the installation:
aumos-owasp-defenses version
Basic usage:
import aumos_owasp_defenses
# See examples/01_quickstart.py for a working example
Documentation
Enterprise Upgrade
For production deployments requiring SLA-backed support and advanced integrations, contact the maintainers or see the commercial extensions documentation.
Contributing
Contributions are welcome. Please read CONTRIBUTING.md before opening a pull request.
License
Apache 2.0 — see LICENSE for full terms.
Part of AumOS — open-source agent infrastructure.
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file aumos_owasp_defenses-0.2.0.tar.gz.
File metadata
- Download URL: aumos_owasp_defenses-0.2.0.tar.gz
- Upload date:
- Size: 151.4 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.11.9
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
e0428a21a077947b74edf8e984f53c43ddab2b120d4e4e3c055d7e430f839c7b
|
|
| MD5 |
31b4ff9b9a7cb9f3f988dff64d3dfffd
|
|
| BLAKE2b-256 |
8790664208b87113f2dd60bd0f0c30297d92141c28eb100cd79a33d85ed84e56
|
File details
Details for the file aumos_owasp_defenses-0.2.0-py3-none-any.whl.
File metadata
- Download URL: aumos_owasp_defenses-0.2.0-py3-none-any.whl
- Upload date:
- Size: 136.1 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.11.9
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
a650353345af62a7f71103a23d120cc44a7ee17c4e4ec9cb8ff3be3855e19c37
|
|
| MD5 |
26a7ad0c8363af776952ccc11b28a6f8
|
|
| BLAKE2b-256 |
861d5d1e4f90cb3b47dfd811168fc38e1a16579d82bd38f1f77c94c42bd95182
|
