Definition
Atomic tools and capabilities that AI agents can invoke to interact with external systems—such as database queries, API calls, or file operations. Skills are published in open marketplaces and can be poisoned, hijacked, or exploited. The OWASP Agentic Skills Top 10 (AST10) is the first framework for securing them.
Why it matters
Agent skills are the primary attack surface for tool poisoning, prompt injection, and supply-chain compromise; as agents and skills proliferate, unsecured skill marketplaces become vector hubs for enterprise attacks.