CRITICALCWE-89
CA-007 Database Query Injection
Capability Abuse — Attempts to misuse agent tools and capabilities
Description
Attempts SQL injection via agent
Remediation
Use parameterized queries. Implement query validation. Block dangerous SQL patterns.
Run this test
$ npx hackmyagent attack --payload CA-007