Full Platform Coverage
Every TrustTrace finding maps to OWASP LLM Top 10, the CoSAI threat taxonomy, and your compliance framework. Your security team always knows what to fix and why it matters.
OWASP LLM Top 10 Aligned
TrustTrace maps every finding to the OWASP LLM Top 10, the definitive framework for AI and LLM security risk. Every rule in our library is tagged to its corresponding OWASP category so your security team always knows the risk context behind each finding.
View the OWASP LLM Top 10From capability to framework, mapped.
| Capability | Rules | OWASP Categories | CoSAI | Frameworks |
|---|---|---|---|---|
| Discovery | TT-DISC-001 | LLM03 | T11, IIC | SOC 2 |
| Agent Posture | 33 | LLM01 to LLM10 | T1 to T3, T9, T10 | HIPAA, SOC 2 |
| MCP Protocol | 14 | LLM01, 02, 03, 06, 08, 09 | T4, T7, T8, T11, T12 | CoSAI |
| Secrets & Creds | TT-SEC-001 | LLM02 | T5 | HIPAA, SOC 2 |
| Transport Security | TT-SEC-002 / 003 | LLM08 | T7 | SOC 2 |
| Supply Chain | TT-MCP-013 / 014 / 021 | LLM03 | T11 | SOC 2 |
| Continuous Monitoring | Scheduled | All | All | All |
Full coverage of every category, with rules mapped per finding.
Prompt Injection
Direct and indirect injection via untrusted inputs and tool descriptions.
Sensitive Information Disclosure
Hardcoded secrets, PII exposure, and credential leakage in agent contexts.
Supply Chain
MCP server provenance, dependency integrity, and model artifact verification.
Data and Model Poisoning
Tool definition tampering and training data integrity checks.
Improper Output Handling
Unsanitized agent output reaching downstream systems.
Excessive Agency
Autonomy classification, tool scoping, and privilege boundary review.
System Prompt Leakage
System prompt extraction risk and disclosure of operational instructions.
Vector and Embedding Weaknesses
RAG injection, embedding inversion, and TLS for retrieval channels.
Misinformation
Hallucination guardrails, citation verification, and grounding controls.
Unbounded Consumption
Resource limits, cost controls, and denial-of-wallet detection.
Agent and MCP Server Discovery
TrustTrace finds AI agents and MCP servers you did not know existed. The discovery scanner walks your codebase and identifies MCP configuration files, agent framework imports, tool definitions, and LLM instantiations across Python codebases. Discovered assets feed directly into the assessment pipeline so nothing is assessed in isolation.
Detected frameworks: LangChain, AutoGen, CrewAI, OpenAI Assistants, Anthropic agents, FastAPI agent patterns.
Detected config formats: mcp.json, claude_desktop_config.json, mcp-config.yaml, and 8 additional MCP configuration patterns.
Read the discovery docsTrustTrace is aligned with the CoSAI January 2026 MCP Security whitepaper threat taxonomy, published by a working group including Anthropic, Google, IBM, Microsoft, and NVIDIA.
CoSAI MCP Security whitepaperFramework Alignment