Skip to content
ATR-2026-00147highSkill Compromiseexperimental

Community Fork Impersonation

Detects social engineering that promotes a malicious package as a "community fork" or "enhanced version" of a legitimate tool. Crystallized from 31 adversarial samples.

嚴重度
high
類別
Skill Compromise
掃描目標
both
作者
ATR Threat Cloud Crystallization

建議回應

alertblock input

參考資料

OWASP Agentic
ASI04 - Supply Chain Vulnerabilities
OWASP LLM
LLM01:2025 - Prompt Injection
在 GitHub 上查看完整 YAML →

更多 Skill Compromise 規則

ATR-2026-00060highMCP Skill Impersonation and Supply Chain AttackATR-2026-00120criticalSKILL.md Prompt InjectionATR-2026-00121criticalMalicious Code in Skill PackageATR-2026-00122highWeaponized Skill — Agent as Attack ToolATR-2026-00123highOver-Privileged Skill — Excessive Permissions