AI agents run inside coding assistants, MCP servers, and multi-agent frameworks. The access that makes them useful also opens paths to prompt injection, tool poisoning, and credential theft. Public CVE feeds carry agent-execution flaws that reach production faster than the tooling built to catch them. Agent Threat Rules, or ATR, is an open detection format aimed at this category of attack.
AI agents run inside coding assistants, MCP servers, and multi-agent frameworks. The access that makes them useful also opens paths to prompt injection, tool poisoning, and credential theft.
Public CVE feeds carry agent-execution flaws that reach production faster than the tooling built to catch them. Agent Threat Rules, or ATR, is an open detection format aimed at this category of attack. ATR rules are YAML documents that conform to a versioned schema.