secure-ai

Secures AI integration layers through multi-layered defense, structural isolation, and zero-trust orchestration. Covers prompt injection defense, model output validation, agentic security, secure server actions, supply chain integrity, MCP tool security, and audit protocols for applications that interact with LLMs.

Aligned with the OWASP Top 10 for LLM Applications 2025 and the NIST AI Risk Management Framework (AI RMF 1.0). Provides coverage for all ten OWASP LLM risks with concrete defense patterns.

When to use: Securing LLM-powered features against prompt injection, validating and sanitizing model outputs before downstream use, implementing zero-trust for autonomous agents, hardening server actions for AI endpoints, securing MCP tool integrations, managing AI supply chain risks, auditing AI access patterns.

确保 AI 集成免遭快速注入、权限升级和数据泄露。在为 LLM 管道实施深度防御、对自主代理应用零信任控制、强化与 AI 服务交互的服务器操作、验证模型输出、保护 MCP 工具集成或审核 AI 系统访问模式和身份管理时使用。用于 OWASP LLM Top 10、即时注入防御、代理安全、AI 供应链。 来源：oakoss/agent-skills。