Skip to content
ATR-2026-00050highExcessive Autonomyexperimental

Runaway Agent Loop Detection

Detects when an agent enters a runaway loop through repeated identical actions, infinite retry patterns, or recursive self-invocation. This rule uses regex-only detection to identify loop indicators in agent output and tool call content, such as retry counters, repeated action descriptions, recursive invocation patterns, and stalled progress indicators. Runaway loops waste computational resources, accumulate costs, and may indicate logic errors or adversarial manipulation.

Severity
high
Category
Excessive Autonomy
Scan Target
mcp
Author
ATR Community

Response Actions

reduce permissionsescalatealertkill agent

References

OWASP Agentic
ASI05:2026 - Unexpected Code Execution
OWASP LLM
LLM06:2025 - Excessive AgencyLLM10:2025 - Unbounded Consumption
MITRE ATLAS
AML.T0053 - LLM Plugin CompromiseAML.T0046 - Spamming ML System with Chaff Data
View full YAML on GitHub →

More Excessive Autonomy Rules

ATR-2026-00051highAgent Resource Exhaustion DetectionATR-2026-00052highCascading Failure Detection in Agent PipelinesATR-2026-00098criticalUnauthorized Financial Action by AI AgentATR-2026-00099lowHigh-Risk Tool Invocation Without Human Confirmation