Merge pull request #2833 from MrMartiniMo/add-llm-card-mappings

Add security mappings (STRIDE, CIA, MITRE ATLAS, OWASP LLM Top 10, CWE) for all LLM companion cards (LLM2-LLMK)

Author: sydseter

source/companion-mappings-1.0.yaml

@@ -16,74 +16,158 @@ suits:
     id: LLM2
     value: 2
     url: https://cornucopia.owasp.org/cards/LLM2
-    stride: [ ]
-    stride_print: [ ]
+    stride: [ T ]
+    stride_print: [ "Tampering" ]
+    cia: [ I ]
+    cia_print: [ "Integrity" ]
+    mitre_atlas: [ AML.T0048 ]
+    mitre_atlas_print: [ "AML.T0048: External Harms" ]
+    owasp_llm_top10: [ LLM09:2025 ]
+    owasp_llm_top10_print: [ "LLM09:2025: Misinformation" ]
+    cwe: [ CWE-1426 ]
   -
     id: LLM3
     value: 3
     url: https://cornucopia.owasp.org/cards/LLM3
-    stride: [ ]
-    stride_print: [ ]
+    stride: [ T, E ]
+    stride_print: [ "Tampering", "Elevation of Privilege" ]
+    cia: [ I ]
+    cia_print: [ "Integrity" ]
+    mitre_atlas: [ AML.T0051.000 ]
+    mitre_atlas_print: [ "AML.T0051.000: LLM Prompt Injection: Direct" ]
+    owasp_llm_top10: [ LLM01:2025 ]
+    owasp_llm_top10_print: [ "LLM01:2025: Prompt Injection" ]
+    cwe: [ CWE-1427 ]
   -
     id: LLM4
     value: 4
     url: https://cornucopia.owasp.org/cards/LLM4
-    stride: [ ]
-    stride_print: [ ]
+    stride: [ I ]
+    stride_print: [ "Information Disclosure" ]
+    cia: [ C ]
+    cia_print: [ "Confidentiality" ]
+    mitre_atlas: [ AML.T0057 ]
+    mitre_atlas_print: [ "AML.T0057: LLM Data Leakage" ]
+    owasp_llm_top10: [ LLM02:2025, LLM07:2025 ]
+    owasp_llm_top10_print: [ "LLM02:2025: Sensitive Information Disclosure", "LLM07:2025: System Prompt Leakage" ]
+    cwe: [ CWE-200 ]
   -
     id: LLM5
     value: 5
     url: https://cornucopia.owasp.org/cards/LLM5
-    stride: [ ]
-    stride_print: [ ]
+    stride: [ E, S ]
+    stride_print: [ "Elevation of Privilege", "Spoofing" ]
+    cia: [ C, I ]
+    cia_print: [ "Confidentiality", "Integrity" ]
+    mitre_atlas: [ AML.T0012 ]
+    mitre_atlas_print: [ "AML.T0012: Valid Accounts" ]
+    owasp_llm_top10: [ LLM02:2025 ]
+    owasp_llm_top10_print: [ "LLM02:2025: Sensitive Information Disclosure" ]
+    cwe: [ CWE-285, CWE-863 ]
   -
     id: LLM6
     value: 6
     url: https://cornucopia.owasp.org/cards/LLM6
-    stride: [ ]
-    stride_print: [ ]
+    stride: [ T ]
+    stride_print: [ "Tampering" ]
+    cia: [ I ]
+    cia_print: [ "Integrity" ]
+    mitre_atlas: [ AML.T0020 ]
+    mitre_atlas_print: [ "AML.T0020: Poison Training Data" ]
+    owasp_llm_top10: [ LLM04:2025 ]
+    owasp_llm_top10_print: [ "LLM04:2025: Data and Model Poisoning" ]
+    cwe: [ CWE-345 ]
   -
     id: LLM7
     value: 7
     url: https://cornucopia.owasp.org/cards/LLM7
-    stride: [ ]
-    stride_print: [ ]
+    stride: [ T ]
+    stride_print: [ "Tampering" ]
+    cia: [ I ]
+    cia_print: [ "Integrity" ]
+    mitre_atlas: [ AML.T0059 ]
+    mitre_atlas_print: [ "AML.T0059: Erode Dataset Integrity" ]
+    owasp_llm_top10: [ LLM08:2025 ]
+    owasp_llm_top10_print: [ "LLM08:2025: Vector and Embedding Weaknesses" ]
+    cwe: [ CWE-345, CWE-20 ]
   -
     id: LLM8
     value: 8
     url: https://cornucopia.owasp.org/cards/LLM8
-    stride: [ ]
-    stride_print: [ ]
+    stride: [ D ]
+    stride_print: [ "Denial of Service" ]
+    cia: [ A ]
+    cia_print: [ "Availability" ]
+    mitre_atlas: [ AML.T0029, AML.T0034 ]
+    mitre_atlas_print: [ "AML.T0029: Denial of ML Service", "AML.T0034: Cost Harvesting" ]
+    owasp_llm_top10: [ LLM10:2025 ]
+    owasp_llm_top10_print: [ "LLM10:2025: Unbounded Consumption" ]
+    cwe: [ CWE-400, CWE-770 ]
   -
     id: LLM9
     value: 9
     url: https://cornucopia.owasp.org/cards/LLM9
-    stride: [ ]
-    stride_print: [ ]
+    stride: [ E, I ]
+    stride_print: [ "Elevation of Privilege", "Information Disclosure" ]
+    cia: [ C, I ]
+    cia_print: [ "Confidentiality", "Integrity" ]
+    mitre_atlas: [ AML.T0053 ]
+    mitre_atlas_print: [ "AML.T0053: AI Agent Tool Invocation" ]
+    owasp_llm_top10: [ LLM06:2025 ]
+    owasp_llm_top10_print: [ "LLM06:2025: Excessive Agency" ]
+    cwe: [ CWE-862, CWE-285 ]
   -
     id: LLMX
     value: X
     url: https://cornucopia.owasp.org/cards/LLMX
-    stride: [ ]
-    stride_print: [ ]
+    stride: [ T, R ]
+    stride_print: [ "Tampering", "Repudiation" ]
+    cia: [ I ]
+    cia_print: [ "Integrity" ]
+    mitre_atlas: [ AML.T0051.001 ]
+    mitre_atlas_print: [ "AML.T0051.001: LLM Prompt Injection: Indirect" ]
+    owasp_llm_top10: [ LLM01:2025 ]
+    owasp_llm_top10_print: [ "LLM01:2025: Prompt Injection" ]
+    cwe: [ CWE-1427 ]
   -
     id: LLMJ
     value: J
     url: https://cornucopia.owasp.org/cards/LLMJ
-    stride: [ ]
-    stride_print: [ ]
+    stride: [ T, E ]
+    stride_print: [ "Tampering", "Elevation of Privilege" ]
+    cia: [ I ]
+    cia_print: [ "Integrity" ]
+    mitre_atlas: [ AML.T0050 ]
+    mitre_atlas_print: [ "AML.T0050: Command and Scripting Interpreter" ]
+    owasp_llm_top10: [ LLM05:2025 ]
+    owasp_llm_top10_print: [ "LLM05:2025: Improper Output Handling" ]
+    cwe: [ CWE-1426, CWE-94, CWE-77 ]
   -
     id: LLMQ
     value: Q
     url: https://cornucopia.owasp.org/cards/LLMQ
-    stride: [ ]
-    stride_print: [ ]
+    stride: [ T ]
+    stride_print: [ "Tampering" ]
+    cia: [ I ]
+    cia_print: [ "Integrity" ]
+    mitre_atlas: [ AML.T0010 ]
+    mitre_atlas_print: [ "AML.T0010: ML Supply Chain Compromise" ]
+    owasp_llm_top10: [ LLM03:2025 ]
+    owasp_llm_top10_print: [ "LLM03:2025: Supply Chain" ]
+    cwe: [ CWE-1357 ]
   -
     id: LLMK
     value: K
     url: https://cornucopia.owasp.org/cards/LLMK
-    stride: [ ]
-    stride_print: [ ]
+    stride: [ E ]
+    stride_print: [ "Elevation of Privilege" ]
+    cia: [ I ]
+    cia_print: [ "Integrity" ]
+    mitre_atlas: [ AML.T0053 ]
+    mitre_atlas_print: [ "AML.T0053: AI Agent Tool Invocation" ]
+    owasp_llm_top10: [ LLM06:2025 ]
+    owasp_llm_top10_print: [ "LLM06:2025: Excessive Agency" ]
+    cwe: [ CWE-269, CWE-840 ]
 -
   id: CLD
   name: Cloud