Full Platform Coverage

Full Platform Coverage

Every TrustTrace finding maps to OWASP LLM Top 10, the CoSAI threat taxonomy, and your compliance framework. Your security team always knows what to fix and why it matters.

Industry Framework

OWASP LLM Top 10 Aligned

TrustTrace maps every finding to the OWASP LLM Top 10, the definitive framework for AI and LLM security risk. Every rule in our library is tagged to its corresponding OWASP category so your security team always knows the risk context behind each finding.

View the OWASP LLM Top 10
Coverage Matrix

From capability to framework, mapped.

CapabilityRulesOWASP CategoriesCoSAIFrameworks
DiscoveryTT-DISC-001LLM03T11, IICSOC 2
Agent Posture33LLM01 to LLM10T1 to T3, T9, T10HIPAA, SOC 2
MCP Protocol16LLM01, 02, 03, 06, 08, 09T4, T7, T8, T11, T12CoSAI
Secrets & CredsTT-SEC-001LLM02T5HIPAA, SOC 2
Transport SecurityTT-SEC-002 / 003, TT-MCP-024LLM08T7SOC 2
Supply ChainTT-MCP-013 / 014 / 021, TT-SEC-004LLM03T11SOC 2
Continuous MonitoringScheduledAllAllAll
OWASP LLM Top 10

Full coverage of every category, with rules mapped per finding.

LLM018 rules

Prompt Injection

Direct and indirect injection via untrusted inputs and tool descriptions.

LLM026 rules

Sensitive Information Disclosure

Hardcoded secrets, PII exposure, and credential leakage in agent contexts.

LLM036 rules

Supply Chain

MCP server provenance, dependency integrity, and model and prompt artifact hash verification.

LLM044 rules

Data and Model Poisoning

Tool definition tampering and training data integrity checks.

LLM053 rules

Improper Output Handling

Unsanitized agent output reaching downstream systems.

LLM0610 rules

Excessive Agency

Autonomy classification, tool scoping, unsafe code execution tool detection, and privilege boundary review.

LLM072 rules

System Prompt Leakage

System prompt extraction risk and disclosure of operational instructions.

LLM085 rules

Vector and Embedding Weaknesses

RAG injection, embedding inversion, and TLS for retrieval and inter-agent transport channels.

LLM093 rules

Misinformation

Hallucination guardrails, citation verification, and grounding controls.

LLM105 rules

Unbounded Consumption

Resource limits, cost controls, and denial-of-wallet detection.

TrustTrace detection rules are continuously refined from a curated threat intelligence pipeline covering OWASP LLM Top 10, MITRE ATLAS, NVD, CoSAI, and AI security research publications. Every new detection is validated against the TrustTrace Lab before release, confirmed against a live vulnerable agent, not added from theory. Paid plan subscribers receive advance notice of new detections and rule additions.

Agentic Framework

OWASP Agentic Security Initiative (ASI) Coverage

TrustTrace detects threats across the OWASP ASI v1.1 agentic threat taxonomy — the most comprehensive framework for autonomous AI security published to date.

Reasoning and Planning Threats

T6

Intent Breaking & Goal Manipulation

Detected
T7

Misaligned & Deceptive Behaviors

Runtime (Phase 2)
T8

Repudiation & Untraceability

Detected

Memory-Based Threats

T1

Memory Poisoning

Detected
T5

Cascading Hallucination Attacks

Partial

Tool, Execution & Supply Chain Threats

T2

Tool Misuse

Detected
T3

Privilege Compromise

Detected
T4

Resource Overload

Detected
T11

Unexpected RCE and Code Attacks

Detected
T16

Insecure Inter-Agent Protocol Abuse

Detected
T17

Supply Chain Compromise

Detected

Authentication & Identity Threats

T9

Identity Spoofing & Impersonation

Detected

Human Interaction Threats

T10

Overwhelming Human-in-the-Loop

Detected
T12

Agent Communication Poisoning

Partial
T13

Rogue Agents in Multi-Agent Systems

Detected
T14

Human Attacks on Multi-Agent Systems

Partial
T15

Human Manipulation

Partial

Detected = identified by TrustTrace static assessment and behavioral testing. Partial = foundational detection; full coverage requires runtime governance. Runtime (Phase 2) = addressed by TrustTrace's offline replay and inline enforcement roadmap.

Source: OWASP Top 10 for LLM Apps & Gen AI — Agentic Security Initiative v1.1 (December 2025). genai.owasp.org

Discovery

Agent and MCP Server Discovery

TrustTrace finds AI agents and MCP servers you did not know existed. The discovery scanner walks your codebase and identifies MCP configuration files, agent framework imports, tool definitions, and LLM instantiations across Python codebases. Discovered assets feed directly into the assessment pipeline so nothing is assessed in isolation.

Detected frameworks: LangChain, AutoGen, CrewAI, OpenAI Assistants, Anthropic agents, FastAPI agent patterns.

Detected config formats: mcp.json, claude_desktop_config.json, mcp-config.yaml, and 8 additional MCP configuration patterns.

Read the discovery docs
CoSAI Alignment

TrustTrace is aligned with the CoSAI January 2026 MCP Security whitepaper threat taxonomy, published by a working group including Anthropic, Google, IBM, Microsoft, and NVIDIA.

CoSAI MCP Security whitepaper

Framework Alignment

HIPAASOC 2OWASP LLM Top 10

Ready to map your AI security posture?

Start Free ScanRequest Managed Assessment