๐ŸŒ
OWASP
owasp.org โ€บ www-project-top-ten
OWASP Top Ten Web Application Security Risks | OWASP Foundation
The OWASP Top 10 is the reference standard for the most critical web application security risks. Adopting the OWASP Top 10 is perhaps the most effective first step towards changing your software development culture focused on producing secure code.
HOME
OWASP Foundation, the Open Source Foundation for Application Security on the main website for The OWASP Foundation. OWASP is a nonprofit foundation that works to improve the security of software.
ABOUT
About the OWASP Foundation on the main website for The OWASP Foundation. OWASP is a nonprofit foundation that works to improve the security of software.
PROJECTS
Projects on the main website for The OWASP Foundation. OWASP is a nonprofit foundation that works to improve the security of software.
CHAPTERS
OWASP Local Chapters on the main website for The OWASP Foundation. OWASP is a nonprofit foundation that works to improve the security of software.
๐ŸŒ
OWASP
genai.owasp.org โ€บ home โ€บ resources โ€บ owasp top 10 for agentic applications for 2026
OWASP Top 10 for Agentic Applications for 2026 - OWASP Gen AI Security Project
December 10, 2025 - The OWASP Top 10 for Agentic Applications 2026 is a globally peer-reviewed framework that identifies the most critical security risks facing autonomous and agentic AI systems. Developed through extensive collaboration with more than 100 industry ...
People also ask

What is the OWASP Top 10 for Agentic Applications 2026?
It is a community-developed list of the ten most critical security risks for agentic AI systems โ€” systems where models plan, use tools, hold persistent memory, and coordinate with other agents. It is published by the OWASP GenAI Security Project under the OWASP Foundation; the 2026 edition was announced on 9 December 2025. The ten categories use the prefix ASI01 through ASI10.
๐ŸŒ
docs.modulos.ai
docs.modulos.ai โ€บ frameworks โ€บ owasp-top-10-agentic โ€บ index
OWASP Top 10 for Agentic Applications (2026) โ€” Modulos Governance ...
Is the OWASP Top 10 for Agentic Applications mandatory?
No. The list is a voluntary open-source taxonomy. It is not law and imposes no obligations by itself. It is referenced by security teams and procurement processes as an emerging baseline for agentic-AI risk. The EU AI Act does not reference OWASP; however, Article 15 (accuracy, robustness, cybersecurity) and the Article 9 risk-management system can make agentic-security testing evidence relevant for high-risk providers.
๐ŸŒ
docs.modulos.ai
docs.modulos.ai โ€บ frameworks โ€บ owasp-top-10-agentic โ€บ index
OWASP Top 10 for Agentic Applications (2026) โ€” Modulos Governance ...
How is the OWASP Top 10 for Agentic Applications different from the OWASP Top 10 for LLM Applications?
The LLM Top 10 covers the security risks of any application built on a language model โ€” chatbots, RAG systems, copilots. The Agentic Top 10 adds the risks that emerge specifically when the model plans across steps, invokes tools, persists memory, and coordinates with other agents. Most agentic systems are also LLM applications, so the two lists are normally applied together rather than as alternatives.
๐ŸŒ
docs.modulos.ai
docs.modulos.ai โ€บ frameworks โ€บ owasp-top-10-agentic โ€บ index
OWASP Top 10 for Agentic Applications (2026) โ€” Modulos Governance ...
๐ŸŒ
Owasp
scs.owasp.org โ€บ sctop10
OWASP Smart Contract Top 10 : 2026 - OWASP Smart Contract Security
The 2026 Top 10 is anchored in 2025 smart contract incident data and practitioner input, as detailed on the dedicated Data Sources page.
๐ŸŒ
Medium
medium.com โ€บ @nikoo.asadnejad.work โ€บ owasp-top-10-2026-the-most-critical-web-application-security-risks-every-developer-should-d41531188c9a
OWASP Top 10 (2026): The Most Critical Web Application Security Risks Every Developer Should Understand | by Nikoo Asadnejad | Jun, 2026 | Medium
June 11, 2026 - The Open Worldwide Application Security Project (OWASP) publishes the OWASP Top 10, a widely recognized awareness document that identifies the most critical security risks affecting web applications.
๐ŸŒ
DeepTeam
trydeepteam.com โ€บ docs โ€บ frameworks-owasp-top-10-for-agentic-applications
OWASP Top 10 for Agents 2026 | DeepTeam - The LLM Red Teaming Framework
June 5, 2026 - What Makes Agentic AI DifferentThe OWASP ASI Top 10 2026 Risks List1. Agent Goal Hijack (ASI01:2026)Types of Goal Hijacking2. Tool Misuse & Exploitation (ASI02:2026)Risk Categories3.
๐ŸŒ
Modulos AG
docs.modulos.ai โ€บ frameworks โ€บ owasp-top-10-agentic โ€บ index
OWASP Top 10 for Agentic Applications (2026) โ€” Modulos Governance Guide | Modulos Docs
The OWASP Top 10 for Agentic Applications 2026 ranks ten security risks specific to agentic AI: planning, tool use, identity, supply chain, code execution, memory, inter-agent communication, cascading failures, humanโ€“agent trust, and rogue agents.
Find elsewhere
๐ŸŒ
Rafter
rafter.so โ€บ blog โ€บ owasp-overview
Rafter - OWASP Top 10 2026: Latest Version & Full List
June 4, 2026 - There is no official "OWASP Top 10 2026" โ€” the current, most recent edition is the OWASP Top 10:2025, released in late 2025, and it is what most "OWASP Top 10 2026" searches are actually looking for.
๐ŸŒ
Cloudflare
cloudflare.com โ€บ learning โ€บ security โ€บ threats โ€บ owasp-top-10
What is OWASP? What Are The OWASP Top 10?
The OWASP Top 10 is a regularly updated report outlining security concerns for web application security, focusing on the 10 most critical risks. The report is put together by a team of security experts from all over the world.
๐ŸŒ
Giskard
giskard.ai โ€บ knowledge โ€บ owasp-top-10-for-agentic-application-2026
OWASP Top 10 for Agentic Applications 2026: Security Guide
December 22, 2025 - Following the rapid move of Agentic AI systems from pilots to production across finance, healthcare, and defense , OWASP assembled a global community of dozens of security experts from industry, academia, and government to develop guidance on Agentic security. The team identified high-risk issues affecting these autonomous agents, evaluating their impact, attack scenarios, and remediation strategies. The outcome of this work is the Top 10 for Agentic Applications, a list of the ten most critical vulnerabilities that affect Agentic AI.
๐ŸŒ
OWASP
owasp.org โ€บ www-project-smart-contract-top-10
OWASP Smart Contract Top 10 | OWASP Foundation
The OWASP Smart Contract Top 10 : 2026 is a standard awareness document that aims to provide Web3 developers and security teams with insights into the top 10 vulnerabilities found in smart contracts.
๐ŸŒ
Alexewerlof
blog.alexewerlof.com โ€บ alex ewerlรถf notes โ€บ owasp top 10 agents & ai vulnerabilities (2026 cheat sheet)
OWASP Top 10 Agents & AI Vulnerabilities (2026 Cheat Sheet)
March 20, 2026 - This post goes through the complete OWASP Top 10 for LLMs (LLM01-LLM10) and OWASP Top 10 for Agents (ASI01-ASI10) with examples, illustrations and pragmatic advice.
๐ŸŒ
Microsoft
microsoft.com โ€บ blog home โ€บ addressing the owasp top 10 risks in agentic ai with microsoft copilot studio
Addressing the OWASP Top 10 Risks in Agentic AI with Microsoft Copilot Studio | Microsoft Security Blog
April 1, 2026 - The OWASP Top 10 for Agentic Applications (2026) outlines the top ten risks associated with autonomous systems that can act across workflows using real identities, data access, and tools.
๐ŸŒ
Auth0
community.auth0.com โ€บ blog discussions
Why Broken Access Control Still Dominates the OWASP Top 10 in 2026? - Auth0 Community
January 23, 2026 - Explore why Broken Access Control remains the #1 OWASP risk in 2026. Learn how to bridge the gap between authentication and authorization using FGA and Policy as Code.
๐ŸŒ
Azure Docs
docs.azure.cn โ€บ en-us โ€บ api-management โ€บ mitigate-owasp-api-threats
Mitigate OWASP API security top 10 in Azure API Management | Azure Docs
October 13, 2025 - The OWASP API Security Project focuses on strategies and solutions to understand and mitigate the unique vulnerabilities and security risks of APIs. In this article, we discuss the latest recommendations to mitigate the top 10 API threats identified by OWASP in their 2023 list using Azure API Management.
๐ŸŒ
Ultimahub
ultimahub.com โ€บ home โ€บ courses โ€บ cybersecurity & compliance โ€บ owasp top 10 2025 professional training course
OWASP Top 10 2025 Professional Training Course - Corporate Skills & Language Training Asia | Ultimahub
January 20, 2026 - This module provides an overview of OWASP, its mission, and the importance of web application security. Participants will learn about the OWASP Top 10 and how it serves as a standard for addressing the most critical web application security risks.