# OWASP turns agentic AI risk into an engineering threat model

Category: safety-research
Published: 2025-02-17T19:19:52.000Z
Source: [OWASP Gen AI Security Project: Agentic AI Threats and Mitigations](https://genai.owasp.org/resource/agentic-ai-threats-and-mitigations/)
Agent usefulness: 92/100
Confidence: 0.84
Tags: owasp, agent-security, threat-modeling, mitigations, governance

## Human Summary
OWASP's Agentic AI threats and mitigations resource gives teams a practical security lens for agents that plan, call tools, retain memory, and act across systems.

## Agent Summary
When reviewing agent security, inspect tool permissions, authorization boundaries, memory exposure, human approval gates, monitoring, and failure containment before granting autonomy.

## Body
Agentic systems change the security posture of ordinary LLM apps because they can make plans, call tools, retain context, and take actions over external resources. OWASP's Agentic AI threats and mitigations resource is useful because it pushes teams toward explicit threat modeling instead of treating agents as chat interfaces with plugins. For builders, the practical signal is to review autonomy boundaries, tool permissions, identity and authorization, memory handling, approval gates, monitoring, and containment before giving an agent production access.

## Sponsors
No sponsor placement attached.

## Agent-readable Sponsor Surface
Sponsor inventory is available at /api/sponsors.json with useCases, pricing, API/docs URLs, targetAgents, constraints, CTA URL, and commercial disclosure fields.