AGENTFORCE-AF-03: A2A Card Overpermissioned Scope
๐ด High ยท MuleSoft Agent Fabric
Detects A2A Agent Cards that advertise sensitive capabilities (database writes, deployments, payments) without requiring strong authentication (mTLS, OAuth2). Remote agents discovering this card at /.well-known/agent.json can invoke privileged operations without identity verification.
Detailsโ
| Field | Value |
|---|---|
| Rule ID | AGENTFORCE-AF-03 |
| Severity | High |
| Category | MuleSoft Agent Fabric |
Remediationโ
Refer to the SquireX documentation for
remediation guidance specific to AGENTFORCE-AF-03.