genai-security-crosswalk 2.0.0

package/data/entries/DSGAI02.json

@@ -0,0 +1,728 @@
+{
+  "id": "DSGAI02",
+  "name": "Agent Identity and Credential Exposure",
+  "source_list": "DSGAI-2026",
+  "version": "2026-Q1",
+  "severity": "Critical",
+  "aivss_score": null,
+  "audience": [
+    "red-teamer",
+    "security-engineer",
+    "ciso",
+    "compliance",
+    "ml-engineer",
+    "ot-engineer",
+    "auditor",
+    "developer",
+    "data-engineer"
+  ],
+  "mappings": [
+    {
+      "framework": "MITRE ATLAS",
+      "control_id": "AML.T0012",
+      "control_name": "Obtain Capabilities",
+      "tier": "Foundational",
+      "scope": "Both",
+      "notes": "Adversary acquires agent credentials through memory inspection, log analysis, or tool payload capture"
+    },
+    {
+      "framework": "MITRE ATLAS",
+      "control_id": "AML.T0035",
+      "control_name": "Exfiltrate via ML Inference API",
+      "tier": "Foundational",
+      "scope": "Both",
+      "notes": "Agent credentials embedded in inference requests or responses extracted by adversary"
+    },
+    {
+      "framework": "MITRE ATLAS",
+      "control_id": "AML.T0051",
+      "control_name": "Exploit Public-Facing Application",
+      "tier": "Foundational",
+      "scope": "Both",
+      "notes": "Agent API endpoints exploited to extract credentials or elevate access"
+    },
+    {
+      "framework": "NIST AI RMF 1.0",
+      "control_id": "GV-1.6",
+      "control_name": "Policies for data privacy",
+      "tier": "Foundational",
+      "scope": "Both",
+      "notes": "Agent identity and credential governance policy — NHI inventory, lifecycle, and access controls"
+    },
+    {
+      "framework": "NIST AI RMF 1.0",
+      "control_id": "MP-2.3",
+      "control_name": "Risk categorisation",
+      "tier": "Foundational",
+      "scope": "Both",
+      "notes": "Agent credential exposure risks mapped to specific agent deployments in risk register"
+    },
+    {
+      "framework": "NIST AI RMF 1.0",
+      "control_id": "MS-2.5",
+      "control_name": "Testing — adversarial",
+      "tier": "Foundational",
+      "scope": "Both",
+      "notes": "Adversarial testing covering credential leakage paths — memory, logs, tool payloads"
+    },
+    {
+      "framework": "NIST AI RMF 1.0",
+      "control_id": "MG-2.2",
+      "control_name": "Risk response",
+      "tier": "Foundational",
+      "scope": "Both",
+      "notes": "Incident response for detected credential exposure — rotation, containment, lateral movement assessment"
+    },
+    {
+      "framework": "EU AI Act",
+      "control_id": "Credential exposure must be identified as a foreseeable risk and mitigated",
+      "control_name": "Art. 9 — Risk management",
+      "tier": "Foundational",
+      "scope": "Both",
+      "notes": "Agent credential lifecycle included in Art. 9 risk management system"
+    },
+    {
+      "framework": "EU AI Act",
+      "control_id": "Cybersecurity measures protecting against credential theft and misuse",
+      "control_name": "Art. 15 — Accuracy, robustness, cybersecurity",
+      "tier": "Foundational",
+      "scope": "Both",
+      "notes": "Short-lived credentials, NHI inventory, and access controls are Art. 15 requirements"
+    },
+    {
+      "framework": "EU AI Act",
+      "control_id": "Documented procedures for credential management and incident response",
+      "control_name": "Art. 17 — Quality management",
+      "tier": "Foundational",
+      "scope": "Both",
+      "notes": "Agent identity governance procedures documented in quality management system"
+    },
+    {
+      "framework": "ISO/IEC 27001:2022",
+      "control_id": "A.8.2",
+      "control_name": "Privileged access rights",
+      "tier": "Foundational",
+      "scope": "Both",
+      "notes": "Agent credentials managed as privileged access — short-lived, scoped, reviewed"
+    },
+    {
+      "framework": "ISO/IEC 27001:2022",
+      "control_id": "A.5.16",
+      "control_name": "Identity management",
+      "tier": "Foundational",
+      "scope": "Both",
+      "notes": "All agent identities inventoried and lifecycle-managed as non-human identities"
+    },
+    {
+      "framework": "ISO/IEC 27001:2022",
+      "control_id": "A.5.17",
+      "control_name": "Authentication information",
+      "tier": "Foundational",
+      "scope": "Both",
+      "notes": "Secure management of agent credentials — no hardcoding, rotation enforced"
+    },
+    {
+      "framework": "ISO/IEC 27001:2022",
+      "control_id": "A.8.15",
+      "control_name": "Logging",
+      "tier": "Foundational",
+      "scope": "Both",
+      "notes": "All agent credential use logged with full context — issuance, invocation, expiry"
+    },
+    {
+      "framework": "ISO/IEC 27001:2022",
+      "control_id": "A.8.3",
+      "control_name": "Information access restriction",
+      "tier": "Foundational",
+      "scope": "Both",
+      "notes": "Agent access restricted to minimum scope required per task"
+    },
+    {
+      "framework": "ISO/IEC 42001:2023",
+      "control_id": "Lifecycle — operational",
+      "control_name": "A.6.2.3",
+      "tier": "Foundational",
+      "scope": "Both",
+      "notes": "Foundational"
+    },
+    {
+      "framework": "ISO/IEC 42001:2023",
+      "control_id": "Lifecycle — design",
+      "control_name": "A.6.1.2",
+      "tier": "Foundational",
+      "scope": "Both",
+      "notes": "Foundational"
+    },
+    {
+      "framework": "ISO/IEC 42001:2023",
+      "control_id": "Internal organisation — roles",
+      "control_name": "A.3.3",
+      "tier": "Foundational",
+      "scope": "Both",
+      "notes": "Foundational"
+    },
+    {
+      "framework": "ISO/IEC 42001:2023",
+      "control_id": "Leadership",
+      "control_name": "Cl.5",
+      "tier": "Foundational",
+      "scope": "Both",
+      "notes": "Foundational"
+    },
+    {
+      "framework": "CIS Controls v8.1",
+      "control_id": "CIS 5",
+      "control_name": "5.4 — Restrict administrator privileges",
+      "tier": "Foundational",
+      "scope": "Both"
+    },
+    {
+      "framework": "CIS Controls v8.1",
+      "control_id": "CIS 6",
+      "control_name": "6.5 — Require MFA for admin access",
+      "tier": "Foundational",
+      "scope": "Both"
+    },
+    {
+      "framework": "CIS Controls v8.1",
+      "control_id": "CIS 5",
+      "control_name": "5.3 — Disable dormant accounts",
+      "tier": "Foundational",
+      "scope": "Both"
+    },
+    {
+      "framework": "CIS Controls v8.1",
+      "control_id": "CIS 12",
+      "control_name": "12.7 — Deploy host-based intrusion detection",
+      "tier": "Foundational",
+      "scope": "Both"
+    },
+    {
+      "framework": "OWASP ASVS 4.0.3",
+      "control_id": "V2 Authentication",
+      "control_name": "V2.1.1 — Passwords minimum 12 characters",
+      "tier": "Foundational",
+      "scope": "Both"
+    },
+    {
+      "framework": "OWASP ASVS 4.0.3",
+      "control_id": "V2 Authentication",
+      "control_name": "V2.10.1 — Integration secrets not hardcoded",
+      "tier": "Foundational",
+      "scope": "Both"
+    },
+    {
+      "framework": "OWASP ASVS 4.0.3",
+      "control_id": "V4 Access Control",
+      "control_name": "V4.1.2 — Least privilege for service accounts",
+      "tier": "Foundational",
+      "scope": "Both"
+    },
+    {
+      "framework": "OWASP ASVS 4.0.3",
+      "control_id": "V8 Data Protection",
+      "control_name": "V8.3.7 — Data transferred using current TLS",
+      "tier": "Foundational",
+      "scope": "Both"
+    },
+    {
+      "framework": "ISA/IEC 62443",
+      "control_id": "SR 1.2",
+      "control_name": "Human user authentication",
+      "tier": "Foundational",
+      "scope": "Both",
+      "notes": "All agent credentials unique and traceable — no shared service accounts for OT-accessing agents"
+    },
+    {
+      "framework": "ISA/IEC 62443",
+      "control_id": "SR 1.6",
+      "control_name": "Authenticator management",
+      "tier": "Foundational",
+      "scope": "Both",
+      "notes": "Agent credential lifecycle managed — issuance, rotation, revocation documented per agent"
+    },
+    {
+      "framework": "ISA/IEC 62443",
+      "control_id": "SR 4.1",
+      "control_name": "Data confidentiality",
+      "tier": "Foundational",
+      "scope": "Both",
+      "notes": "Agent credentials never transmitted or stored in cleartext within OT network"
+    },
+    {
+      "framework": "ISA/IEC 62443",
+      "control_id": "SR 6.1",
+      "control_name": "Timely response to events",
+      "tier": "Foundational",
+      "scope": "Both",
+      "notes": "Agent credential exposure treated as security event — immediate rotation, lateral movement assessment"
+    },
+    {
+      "framework": "NIST SP 800-82 Rev 3",
+      "control_id": "ICS vulnerabilities",
+      "control_name": "§5.3",
+      "tier": "Hardening",
+      "scope": "Both",
+      "notes": "Data integrity in OT — training data is OT data"
+    },
+    {
+      "framework": "NIST SP 800-82 Rev 3",
+      "control_id": "Risk assessment",
+      "control_name": "§6.2",
+      "tier": "Hardening",
+      "scope": "Both",
+      "notes": "Assess training data integrity as OT risk"
+    },
+    {
+      "framework": "NIST SP 800-82 Rev 3",
+      "control_id": "Security controls",
+      "control_name": "§7.2",
+      "tier": "Hardening",
+      "scope": "Both",
+      "notes": "Integrity verification on all OT data used for training"
+    },
+    {
+      "framework": "NIST CSF 2.0",
+      "control_id": "PR.AA-01",
+      "control_name": "Identity Management, Authentication & Access Control",
+      "tier": "Foundational",
+      "scope": "Both",
+      "notes": "Identities and credentials managed — NHI inventory, lifecycle, short-lived JIT issuance"
+    },
+    {
+      "framework": "NIST CSF 2.0",
+      "control_id": "PR.AA-05",
+      "control_name": "Identity Management, Authentication & Access Control",
+      "tier": "Foundational",
+      "scope": "Both",
+      "notes": "Access permissions managed — agent credential scope enforced at minimum required"
+    },
+    {
+      "framework": "NIST CSF 2.0",
+      "control_id": "DE.CM-01",
+      "control_name": "Continuous Monitoring",
+      "tier": "Foundational",
+      "scope": "Both",
+      "notes": "Credential usage monitored — anomalous access patterns, lateral movement detected"
+    },
+    {
+      "framework": "NIST CSF 2.0",
+      "control_id": "GV.RM-06",
+      "control_name": "Risk Management Strategy",
+      "tier": "Foundational",
+      "scope": "Both",
+      "notes": "Agent credential exposure in risk register — blast radius per deployment documented"
+    },
+    {
+      "framework": "SOC 2",
+      "control_id": "Agent credentials managed as privileged access — minimum scope, documented justification, regular review",
+      "control_name": "CC6.1 — Logical access",
+      "tier": "Foundational",
+      "scope": "Both"
+    },
+    {
+      "framework": "SOC 2",
+      "control_id": "Agent credentials revoked on decommission and anomaly detection — no dormant agent NHIs",
+      "control_name": "CC6.3 — Access removal",
+      "tier": "Foundational",
+      "scope": "Both"
+    },
+    {
+      "framework": "SOC 2",
+      "control_id": "Agent tool providers assessed — data handling, credential security requirements in vendor agreements",
+      "control_name": "CC9.1 — Vendor risk",
+      "tier": "Foundational",
+      "scope": "Both"
+    },
+    {
+      "framework": "SOC 2",
+      "control_id": "Agent credential anomaly monitoring — unusual usage patterns detected and alerted",
+      "control_name": "CC7.2 — Anomaly detection",
+      "tier": "Foundational",
+      "scope": "Both"
+    },
+    {
+      "framework": "SOC 2",
+      "control_id": "Agent credential lifecycle procedures — issuance, rotation, revocation documented",
+      "control_name": "CC5.2 — Control activities",
+      "tier": "Foundational",
+      "scope": "Both"
+    },
+    {
+      "framework": "PCI DSS v4.0",
+      "control_id": "Req 7.2.1",
+      "control_name": "Restrict access by need to know",
+      "tier": "Foundational",
+      "scope": "Both",
+      "notes": "Agent credentials scoped to minimum CDE access — least privilege, quarterly review"
+    },
+    {
+      "framework": "PCI DSS v4.0",
+      "control_id": "Req 8.2.1",
+      "control_name": "Unique IDs for access",
+      "tier": "Foundational",
+      "scope": "Both",
+      "notes": "Each agent has a unique service identity — no shared credentials across CDE-facing agents"
+    },
+    {
+      "framework": "PCI DSS v4.0",
+      "control_id": "Req 10.2.1",
+      "control_name": "Logging of all access",
+      "tier": "Foundational",
+      "scope": "Both",
+      "notes": "All agent credential operations in CDE logged — issuance, use, anomalous patterns"
+    },
+    {
+      "framework": "PCI DSS v4.0",
+      "control_id": "Req 12.3.2",
+      "control_name": "Targeted risk analysis",
+      "tier": "Foundational",
+      "scope": "Both",
+      "notes": "Targeted risk analysis for agent credential scope in CDE — blast radius if credentials compromised"
+    },
+    {
+      "framework": "ENISA Multilayer Framework",
+      "control_id": "L2",
+      "control_name": "AI System Integrity (ASI)",
+      "tier": "Foundational",
+      "scope": "Both",
+      "notes": "Agents operate under least-privilege credential scope — credential lifetime bounded to agent session, scope documented in AI risk assessment"
+    },
+    {
+      "framework": "ENISA Multilayer Framework",
+      "control_id": "L2",
+      "control_name": "Governance and Risk (GOV)",
+      "tier": "Foundational",
+      "scope": "Both",
+      "notes": "Agent credential policy documented in AI governance framework — scope, lifetime, rotation, revocation all covered"
+    },
+    {
+      "framework": "ENISA Multilayer Framework",
+      "control_id": "MON",
+      "control_name": "Monitoring and Detection",
+      "tier": "Foundational",
+      "scope": "Both",
+      "notes": "All agent credential operations logged — anomaly detection covers unexpected scope expansion or access outside session bounds"
+    },
+    {
+      "framework": "ENISA Multilayer Framework",
+      "control_id": "L1",
+      "control_name": "General ICT — Access Control",
+      "tier": "Foundational",
+      "scope": "Both",
+      "notes": "Short-lived tokens for all agent interactions — secrets management integrated with IAM platform"
+    },
+    {
+      "framework": "OWASP SAMM v2.0",
+      "control_id": "D-TA",
+      "control_name": "Design / Threat Assessment",
+      "tier": "Hardening",
+      "scope": "Both",
+      "notes": "Enumerate all sources, custodians, and transformation stages of training data"
+    },
+    {
+      "framework": "OWASP SAMM v2.0",
+      "control_id": "I-SB",
+      "control_name": "Implementation / Secure Build",
+      "tier": "Hardening",
+      "scope": "Both",
+      "notes": "Hash verification, provenance tracking, and anomaly detection in training data"
+    },
+    {
+      "framework": "OWASP SAMM v2.0",
+      "control_id": "V-ST",
+      "control_name": "Verification / Security Testing",
+      "tier": "Hardening",
+      "scope": "Both",
+      "notes": "Statistical analysis and adversarial probing for poisoned behaviours"
+    },
+    {
+      "framework": "OWASP SAMM v2.0",
+      "control_id": "O-IM",
+      "control_name": "Operations / Incident Management",
+      "tier": "Hardening",
+      "scope": "Both",
+      "notes": "Alert on model output drift that may indicate active poisoning"
+    },
+    {
+      "framework": "OWASP SAMM v2.0",
+      "control_id": "G-PC",
+      "control_name": "Governance / Policy & Compliance",
+      "tier": "Hardening",
+      "scope": "Both",
+      "notes": "Formal policy for data source approval, verification, and chain of custody"
+    },
+    {
+      "framework": "CWE/CVE",
+      "control_id": "CWE-312",
+      "control_name": "CWE-312",
+      "tier": "Foundational",
+      "scope": "Both",
+      "url": "https://cwe.mitre.org/data/definitions/312.html"
+    },
+    {
+      "framework": "CWE/CVE",
+      "control_id": "CWE-798",
+      "control_name": "CWE-798",
+      "tier": "Foundational",
+      "scope": "Both",
+      "url": "https://cwe.mitre.org/data/definitions/798.html"
+    },
+    {
+      "framework": "CWE/CVE",
+      "control_id": "CWE-522",
+      "control_name": "CWE-522",
+      "tier": "Foundational",
+      "scope": "Both",
+      "url": "https://cwe.mitre.org/data/definitions/522.html"
+    },
+    {
+      "framework": "MAESTRO",
+      "control_id": "L6",
+      "control_name": "Security & Compliance",
+      "tier": "Foundational",
+      "scope": "Both"
+    },
+    {
+      "framework": "MAESTRO",
+      "control_id": "L2",
+      "control_name": "Data Operations",
+      "tier": "Foundational",
+      "scope": "Both"
+    },
+    {
+      "framework": "MAESTRO",
+      "control_id": "L7",
+      "control_name": "Agent Ecosystem",
+      "tier": "Foundational",
+      "scope": "Both"
+    },
+    {
+      "framework": "AIUC-1",
+      "control_id": "A",
+      "control_name": "Data & Privacy domain (all)",
+      "tier": "Hardening",
+      "scope": "Both",
+      "notes": "Foundational"
+    },
+    {
+      "framework": "AIUC-1",
+      "control_id": "B001",
+      "control_name": "Third-party adversarial robustness testing",
+      "tier": "Hardening",
+      "scope": "Both",
+      "notes": "Foundational"
+    },
+    {
+      "framework": "AIUC-1",
+      "control_id": "B002",
+      "control_name": "Detect adversarial input",
+      "tier": "Hardening",
+      "scope": "Both",
+      "notes": "Hardening"
+    },
+    {
+      "framework": "AIUC-1",
+      "control_id": "E",
+      "control_name": "Audit trails and logging",
+      "tier": "Hardening",
+      "scope": "Both",
+      "notes": "Foundational"
+    },
+    {
+      "framework": "OWASP NHI Top 10",
+      "control_id": "Write access to training data stores enables poisoning",
+      "control_name": "NHI-5 Over-Privileged NHI",
+      "tier": "Hardening",
+      "scope": "Both",
+      "notes": "Separate read and write credentials; write requires MFA"
+    },
+    {
+      "framework": "OWASP NHI Top 10",
+      "control_id": "Training pipeline credentials in plaintext config",
+      "control_name": "NHI-6 Insecure Credential Storage",
+      "tier": "Hardening",
+      "scope": "Both",
+      "notes": "Vault all training pipeline credentials"
+    },
+    {
+      "framework": "OWASP NHI Top 10",
+      "control_id": "Long-lived write credentials create persistent poisoning window",
+      "control_name": "NHI-7 Long-Lived Credentials",
+      "tier": "Hardening",
+      "scope": "Both",
+      "notes": "Short-lived write tokens; rotate frequently"
+    },
+    {
+      "framework": "NIST SP 800-218A",
+      "control_id": "PW.1.1-PS",
+      "control_name": "Define security requirements — data inventory and classification",
+      "tier": "Foundational",
+      "scope": "Both",
+      "notes": "Define security requirements mandating a complete data inventory covering all datasets used in training, fine-tuning, RAG, and evaluation; classify by sensitivity"
+    },
+    {
+      "framework": "NIST SP 800-218A",
+      "control_id": "PW.2.1-PS",
+      "control_name": "Design software — data flow transparency",
+      "tier": "Foundational",
+      "scope": "Both",
+      "notes": "Design AI pipelines with documented data flow diagrams showing data origins, transformations, storage locations, and access points; maintain as living artefacts"
+    },
+    {
+      "framework": "FedRAMP",
+      "control_id": "PM-9",
+      "control_name": "Risk Management Strategy — data visibility requirements",
+      "tier": "Foundational",
+      "scope": "Both",
+      "notes": "Include data visibility and transparency requirements in AI risk management strategy; define what data flows must be documented and monitored"
+    },
+    {
+      "framework": "FedRAMP",
+      "control_id": "AU-2",
+      "control_name": "Event Logging — data flow tracking",
+      "tier": "Foundational",
+      "scope": "Both",
+      "notes": "Log data movement through AI pipelines — ingestion, transformation, training, inference; enable end-to-end data flow traceability"
+    },
+    {
+      "framework": "FedRAMP",
+      "control_id": "CM-3",
+      "control_name": "Configuration Change Control — data pipeline documentation",
+      "tier": "Foundational",
+      "scope": "Both",
+      "notes": "Document and control changes to AI data pipeline configurations; maintain current data flow diagrams and processing documentation"
+    },
+    {
+      "framework": "DORA",
+      "control_id": "Art. 5–7",
+      "control_name": "ICT Risk Management — data visibility governance",
+      "tier": "Foundational",
+      "scope": "Both",
+      "notes": "Include data visibility and transparency requirements in ICT risk management; define what AI data flows must be documented and monitored"
+    },
+    {
+      "framework": "DORA",
+      "control_id": "Art. 8",
+      "control_name": "Identification — data asset mapping",
+      "tier": "Foundational",
+      "scope": "Both",
+      "notes": "Map all AI data assets — training data, inference data, embeddings, model artefacts — in the ICT asset inventory with data flow documentation"
+    },
+    {
+      "framework": "DORA",
+      "control_id": "Art. 10",
+      "control_name": "Detection — data flow monitoring",
+      "tier": "Foundational",
+      "scope": "Both",
+      "notes": "Monitor AI data flows for undocumented data movement; alert on data transfers outside documented pipelines"
+    }
+  ],
+  "tools": [
+    {
+      "name": "HashiCorp Vault",
+      "type": "open-source",
+      "url": "https://www.vaultproject.io"
+    },
+    {
+      "name": "Teleport",
+      "type": "commercial",
+      "url": "https://goteleport.com"
+    },
+    {
+      "name": "Entro Security",
+      "type": "commercial",
+      "url": "https://entro.security"
+    },
+    {
+      "name": "SPIFFE / SPIRE",
+      "type": "open-source",
+      "url": "https://spiffe.io"
+    },
+    {
+      "name": "AWS Secrets Manager",
+      "type": "commercial",
+      "url": "https://aws.amazon.com/secrets-manager/"
+    },
+    {
+      "name": "SPIRE",
+      "type": "open-source",
+      "url": "https://github.com/spiffe/spire"
+    },
+    {
+      "name": "Apache Atlas",
+      "type": "open-source",
+      "url": "https://atlas.apache.org"
+    },
+    {
+      "name": "Amundsen",
+      "type": "open-source",
+      "url": "https://www.amundsen.io"
+    },
+    {
+      "name": "Google Data Catalog",
+      "type": "commercial",
+      "url": "https://cloud.google.com/data-catalog"
+    },
+    {
+      "name": "Collibra",
+      "type": "commercial",
+      "url": "https://www.collibra.com"
+    },
+    {
+      "name": "OpenLineage",
+      "type": "open-source",
+      "url": "https://openlineage.io"
+    },
+    {
+      "name": "OpenTelemetry",
+      "type": "open-source",
+      "url": "https://opentelemetry.io"
+    },
+    {
+      "name": "Alation",
+      "type": "commercial",
+      "url": "https://www.alation.com"
+    }
+  ],
+  "incidents": [
+    {
+      "name": "DeepSeek AI database exposure — 1M+ chat logs publicly accessible",
+      "url": "https://github.com/emmanuelgjr/GenAI-Security-Crosswalk/blob/main/data/incidents.json",
+      "year": 2025,
+      "incident_id": "INC-032"
+    },
+    {
+      "name": "Italy Garante orders ChatGPT GDPR enforcement — consent and data minimization failures",
+      "url": "https://github.com/emmanuelgjr/GenAI-Security-Crosswalk/blob/main/data/incidents.json",
+      "year": 2025,
+      "incident_id": "INC-035"
+    }
+  ],
+  "crossrefs": {
+    "agentic_top10": [
+      "ASI03",
+      "ASI07",
+      "ASI04",
+      "ASI09"
+    ],
+    "dsgai_2026": [
+      "DSGAI01"
+    ],
+    "llm_top10": [
+      "LLM06",
+      "LLM04",
+      "LLM03",
+      "LLM05",
+      "LLM09"
+    ]
+  },
+  "changelog": [
+    {
+      "date": "2026-03-27",
+      "version": "1.0.0",
+      "change": "Initial entry — generated from GenAI Security Crosswalk v1.5.1 mapping files",
+      "author": "emmanuelgjr"
+    }
+  ]
+}