SAIL 2.0

/

Deploy - Runtime Guardrails

/

Agent Resource Abuse

5.12

.

Agent Resource Abuse

sail
5.12
Risk

Agent Resource Abuse

Description

Attackers or misconfigured integrations exploit the agent runtime for costly or unauthorized use (token spend, crypto mining, spam, denial-of-wallet).

Example

Attacker hijacks an exposed agent endpoint to generate large volumes of content or mine via the agent's code-interpreter sandbox, exhausting cloud and API credits.

Assets Affected

Model Inference Endpoint

AI Platform

Agent Harness

Mitigation
  • Usage quotas per identity
  • abuse detection on usage patterns
  • monitor for abnormal token spend
  • restrict expensive tools to authenticated workflows.
Standards Mapping
  • ISO: A.6.2.6, A.9.4
  • OWASP agentic: ASI02
  • OWASP LLM: LLM10:2025
  • EU AI Act: Art. 15(5)
  • DASF: Model Serving 9.7, Agents-Core 13.4
  • AIUC-1: B004, B008