AGENTFORCE-RD-02: Variable State Condition Evasion
๐ก Medium ยท Runtime Capability Drift
Detects when security-critical ConversationContextVariables (authentication status, user clearance, financial limits) are declared in the AiAuthoringBundle but never referenced in deterministic Agent Script transition conditions (-> if @variables.X). Without deterministic evaluation, attackers can bypass authorization checks through prompt manipulation.
Detailsโ
| Field | Value |
|---|---|
| Rule ID | AGENTFORCE-RD-02 |
| Severity | Medium |
| Category | Runtime Capability Drift |
Remediationโ
Refer to the SquireX documentation for
remediation guidance specific to AGENTFORCE-RD-02.