AgentSkillsCN

ml-vulnerabilities

OWASP 机器学习十大漏洞知识库,用于识别、评估并修复机器学习系统中的安全风险。

SKILL.md
--- frontmatter
name: ml-vulnerabilities
description: OWASP Machine Learning Top 10 vulnerability knowledge base for identifying, assessing, and remediating security risks in machine learning systems.
license: MIT
metadata:
  authors: "OWASP Machine Learning Security Project"
  spec_version: "1.0"
  framework_revision: "1.0.0"
  last_updated: "2026-02-16"
  skill_based_on: "https://github.com/chris-buckley/agnostic-prompt-standard"
  content_based_on: "https://owasp.org/www-project-machine-learning-security-top-10/"

ML Vulnerabilities — Skill Entry

This SKILL.md is the entrypoint for the ML Vulnerabilities skill.

The skill encodes the OWASP Machine Learning Security Top 10 as structured, machine-readable references that an agent can query to identify, assess, and remediate machine learning security risks.

Normative references (ML Top 10)

  1. 00 Vulnerability Index
  2. 01 Input Manipulation Attack
  3. 02 Data Poisoning Attack
  4. 03 Model Inversion Attack
  5. 04 Membership Inference Attack
  6. 05 Model Theft
  7. 06 AI Supply Chain Attacks
  8. 07 Transfer Learning Attack
  9. 08 Model Skewing
  10. 09 Output Integrity Attack
  11. 10 Model Poisoning

Skill layout

  • SKILL.md — this file (skill entrypoint).
  • references/ — the ML Top 10 normative documents.
    • 00-vulnerability-index.md — master index of all vulnerability identifiers, categories, and cross-references.
    • 01 through 10 — one document per vulnerability aligned with OWASP ML Security Top 10 numbering.
  • assets/ — reusable format and constants blocks.
    • constants/ — vulnerability catalog and category definitions.
      • constants-ml-catalog-v1.0.0.md
    • formats/ — output contract examples.
      • format-vulnerability-assessment-v1.0.0.md
      • format-remediation-checklist-v1.0.0.md