正在使用 ATR 的專案。

CIRCL (Computer Incident Response Center Luxembourg) · 自 2026-05-10 · reference

ATR rule-ID taxonomy + threat-intel galaxy merged into MISP's core distribution

OWASP Foundation · 自 2026-05-11 · reference

ATR rule corpus referenced as the canonical agent-threat detection ruleset in the project's threat catalogue

ATR maintainers (community contribution; NOT a NIST publication) · 自 2026-05-10 (community catalog published; PR opened 2026-05-21) · reference

Community-authored OSCAL catalog covering NIST AI RMF (72 controls + 31 cross-reference links), CC0-licensed, self-published at Agent-Threat-Rule/ai-rmf-oscal-catalog. The catalog has been submitted to the NIST OSCAL team as PR usnistgov/oscal-content#333; the PR is OPEN, the NIST OSCAL maintainer has flagged that scope alignment needs rework, and the ATR maintainers are awaiting NIST direction. Listed here for transparency about the submission, NOT as evidence of NIST endorsement.

CNCF / OpenTelemetry GenAI SIG · 自 2026-05-17 · reference

Proposal for `agent.threat.detection.*` semantic-convention attributes (which ATR populates on agent spans) is in review

Cisco · 自 2026-04-22 · rule-import

ATR rule corpus consumed by the AI Defense skill-scanner; matches surface in the Cisco product UI as detection findings

Microsoft · 自 2026-04-26 · rule-import

287-rule ATR expansion auto-synced weekly into the Agent Governance Toolkit detection layer

Gen Digital (Norton / Avast / LifeLock parent) · 自 2026-05-11 · rule-import

Full ATR rule pack integrated into the Sage agentic-AI risk-scoring layer

BerriAI · 自 2026-05-16 · sidecar-proxy

ATR guardrail integration as a LiteLLM proxy callback; scans LLM input + output against the rule corpus at the proxy layer

Promptfoo · 自 2026-04-08 · rule-import

MCP red-team output scanning consumes ATR rules to flag adversarial responses in evaluation runs

NVIDIA · 自 2026-05-20 · rule-import

ATR detector plugin for the garak red-teaming framework

IBM · 自 2026-05-09 · sidecar-proxy

ATR threat-detection plugin for the MCP context-forge proxy

Portkey AI · 自 2026-05-16 · sidecar-proxy

ATR detection plugin in the Portkey gateway plugin architecture

Semgrep Inc. (community contribution) · 自 2026-05-10 · adapter

YAML rule-format adapter that translates Semgrep rule conventions to ATR conformance for skill-manifest + MCP-tool security

AAIF (block/goose) · 自 2026-05-19 · sidecar-proxy

PreToolUse hook denial integrates ATR rule evaluation at the tool-call boundary

SigmaHQ · 自 2026-05-09 · adapter

Cross-listing in the Sigma tools directory; agent-threat-rules listed as a sibling detection-rule format

Otto Sulin (independent) · 自 2026-05-20 · reference

ATR listed in the MCP Security section

E2B · 自 2026-05-16 · reference

ATR listed in the AI agents awesome-list

E2B · 自 2026-05-16 · reference

ATR listed in the AI SDKs awesome-list

Puliczek (independent) · 自 2026-04-21 · reference

ATR listed in MCP threat-detection tools