AGENTFORCE-OG-03: Attractive Metadata Attack via OGP
๐ด High ยท OpenGraph Security
Detects 'Attractive Metadata Attacks' (NeurIPS 2025) where OGP metadata on MCP server or tool endpoints contains language designed to manipulate LLM tool-selection mechanisms. Patterns include imperative directives, exclusion language, and superlative claims that cause the planner to preferentially select attacker-controlled tools.
Detailsโ
| Field | Value |
|---|---|
| Rule ID | AGENTFORCE-OG-03 |
| Severity | High |
| Category | OpenGraph Security |
Remediationโ
Refer to the SquireX documentation for
remediation guidance specific to AGENTFORCE-OG-03.