The OWASP Agentic Top 10, explained

The OWASP Agentic Top 10, introduced by the Agentic Security Initiative in December 2025, addresses security risks specific to agentic AI systems that operate autonomously across multiple interactions and environments. Unlike the OWASP LLM Top 10, which focuses on single interactions, the Agentic Top 10 considers the complexities of distributed agents handling tasks such as reading, writing, and executing code, often without anticipated developer oversight. This framework identifies ten key risks, including agent goal hijack, tool misuse, identity abuse, and rogue agents, emphasizing the need for robust trust boundaries, scoped identities, and comprehensive auditing within agent systems. The framework also highlights gaps, such as economic attribution and multi-tenant isolation, and suggests that effective enforcement requires a combination of model gateways, MCP gateways, agent hooks, identity management, and audit logging. The OWASP Agentic Top 10 aims to provide a structured approach to mitigating risks in the increasingly complex landscape of agentic AI deployments.