Risk
Autonomous Resource Provisioning / Abuse
Description
Agent autonomously creates cloud resources, files, or processes, causing cost overruns, security exposure, or denial-of-service.
Example
Agent launches many cloud VMs or uploads sensitive files to public storage.
Assets Affected
Agentic Platform
AI Platform
Mitigation
- Enforce quotas and resource limits
- monitor and alert on resource creation
- require approval for high-impact actions
- audit resource usage regularly.
Standards Mapping
- ISO: A.4.5, A.9.3
- OWASP agentic: ASI02, ASI10
- OWASP LLM: LLM10:2025
- EU AI Act: Art. 15
- DASF: Model Serving 9.7, Agents-Core 13.4
- AIUC-1: B006, B008