Skip to content

Researchers Develop Vera: Framework for Security Testing of Autonomous AI Agents

Bottom line: Vera automates security testing for autonomous AI agents through a three-stage process of risk discovery, combinatorial generation, and evidence-based verification, uncovering critical security flaws in production agent frameworks.

A new automated testing framework named Vera systematizes security assessment of AI agents that autonomously use external tools. Tests on four production agent frameworks reveal substantial security gaps with success rates up to 93.9% in multi-channel attacks.

Autonomous AI agents that independently act through external tools pose complex and dynamically emerging security risks. Previous security testing has concentrated on expert-predefined security violations and evaluated results via hardcoded rules—an approach that quickly reaches its limits as agents evolve. A research team presents Vera, a framework that combines three phases: (1) Literature-guided exploration continuously identifies risks and structures them into taxonomies of security threats, attack methods, and tool execution environments. (2) Combinatorial composition across taxonomy dimensions generates executable test cases, each specifying a concrete security objective, a programmatically constructed initial state, and a deterministic verification predicate. (3) Adaptive execution launches heterogeneous agents in isolated sandbox environments, with a control agent orchestrating multi-step interactions based on runtime observations, and evidence-based verifiers assess results from environmental state and tool-call artifacts—not from the model’s self-reports.

Vera’s evaluation across four production agent frameworks (OpenClaw, Hermes, Codex, Claude Code) reveals substantial security deficiencies: average attack success rates reach 93.9% under multi-channel attacks. In parallel, the researchers released Vera-Bench, a benchmark comprising 1,600 executable test cases covering 124 risk categories across three execution environments.

For CISOs and security practitioners, this framework is relevant because it enables the transition from ad-hoc testing to standardized, maintainable security evaluations. The high attack success rates suggest that autonomous agents in their current form present significant risks to enterprise processes—particularly when they access sensitive data or critical systems. The Vera framework provides a modular, scalable foundation to systematically assess and document security requirements for rapidly evolving agent-based systems. Code is publicly available on GitHub.


Source: arxiv.org · Published 3 July 2026
Lumi AI News — AI-assisted curation in accordance with Art. 50 EU AI Act. Paraphrase and classification by Lumi News Pipeline v1.7.3.

Share on: