Skip to content

docs(ASI): Supporting Material — AGT Reference Implementation Patterns#818

Draft
jackbatzner wants to merge 1 commit into
OWASP:mainfrom
jackbatzner:feature/agt-reference-implementation
Draft

docs(ASI): Supporting Material — AGT Reference Implementation Patterns#818
jackbatzner wants to merge 1 commit into
OWASP:mainfrom
jackbatzner:feature/agt-reference-implementation

Conversation

@jackbatzner
Copy link
Copy Markdown

@jackbatzner jackbatzner commented Apr 6, 2026
edited
Loading

Contribution Type

Supporting Material — Reference Implementation Patterns

Summary

Adds a reference implementation document at initiatives/agent_security_initiative/reference-implementations/agt-reference-implementation.md showing reusable mitigation patterns for all 10 ASI risks (ASI01–ASI10), using the Microsoft Agent Governance Toolkit (AGT) as open-source evidence.

This is structured as generic patterns first, implementation evidence second — the goal is to teach the architectural approach, not promote a specific product.

What's included

  • Per-risk mitigation patterns for ASI01–ASI10
  • 2 Mermaid architecture diagrams (defense pipeline + deployment topology)
  • 19 evidence links to open-source AGT source files
  • Explicit partial-coverage disclaimers for ASI10, ASI04, ASI09
  • Lessons learned identifying standardization gaps

Context

This contribution comes from work on microsoft/agent-governance-toolkit, where a community discussion mapped the agentic standards landscape and identified contributing implementation patterns back to the OWASP community as a goal.

The corresponding AGT-side tracking PR is microsoft/agent-governance-toolkit#910.

cc @imran-siddique

Happy to adjust format, placement, or scope based on editor feedback.

@jackbatzner
docs: add AGT reference implementation as supporting material
5efec6e 
Add reference implementation patterns from Microsoft Agent Governance
Toolkit (AGT) mapping all 10 ASI risks to reusable mitigation patterns
with open-source code evidence.

Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
@jackbatzner jackbatzner mentioned this pull request Apr 6, 2026
Closed
7 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@guerilla7 guerilla7 Awaiting requested review from guerilla7 guerilla7 will be requested when the pull request is marked ready for review guerilla7 is a code owner

@hoeg hoeg Awaiting requested review from hoeg hoeg will be requested when the pull request is marked ready for review hoeg is a code owner

@itskerenkatz itskerenkatz Awaiting requested review from itskerenkatz itskerenkatz will be requested when the pull request is marked ready for review itskerenkatz is a code owner

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@jackbatzner