// ==== Data ============================================================
// Single source of truth for portfolio content.
// Exported onto window for sibling Babel modules.
const PROFILE = {
name: "Ayush Kumar",
tag: "Agentic AI × Security",
title: "Lead Architect — Agentic AI & Security Platforms",
org: "Eli Lilly and Company",
location: "Bangalore, India",
status: "Open to relocation",
email: "ayushkaps9462@gmail.com",
phone: "+91-7091956935",
links: {
github: "https://github.com/COLONAYUSH",
linkedin: "https://linkedin.com/in/colonayush",
mantis: "https://github.com/COLONAYUSH/Project-MANTIS",
mec: "https://github.com/COLONAYUSH/MEC-Server-Placement",
paperDOI: "https://doi.org/10.5281/zenodo.19161532",
paperForensics: "https://doi.org/10.5281/zenodo.20698154",
forensicsRepo: "https://github.com/COLONAYUSH/agent-forensics",
superagi: "https://superagi.com"
}
};
const NUMBERS = [
{ v: "21k+", l: "github stars · superagi" },
{ v: "800+", l: "tickets/mo autonomously resolved" },
{ v: "88%", l: "mean resolution time cut" },
{ v: "55k", l: "lines of mantis platform code" },
{ v: "130+", l: "ai-callable security tools shipped" },
{ v: "10k+", l: "endpoints under qc analytics" }
];
const PROJECTS = [
{
id: "mantis",
name: "MANTIS",
sub: "Multi-Agent Autonomous Threat Intelligence",
blurb: "Open-source autonomous SOC. 12-engine parallel detection, ReAct investigation agent, RL response — capabilities of $100–500K/yr commercial tools.",
tags: ["Python", "ReAct", "PPO/DQN", "ViT", "BERT"],
metrics: [{ v: "55K", l: "LOC" }, { v: "130+", l: "API endpoints" }, { v: "2100+", l: "tests" }],
year: "2025—",
size: "large",
accent: "mint",
link: PROFILE.links.mantis,
paper: PROFILE.links.paperDOI,
seed: 0.21,
},
{
id: "aegis",
name: "AEGIS",
sub: "Wiz for AI Agents — runtime governance",
blurb: "Production agent observability — behavioral fingerprinting, NHI credential lifecycle, multi-agent trust protocol with cryptographic attestation, decision flight recorder.",
tags: ["Python", "Rust", "MCP", "OTel", "gRPC"],
metrics: [{ v: "OWASP-10", l: "continuous score" }, { v: "JIT", l: "credential drift alerts" }],
year: "2026—",
size: "medium",
accent: "violet",
seed: 0.62,
},
{
id: "agent-forensics",
name: "Agent Forensics",
sub: "Forensically sound attribution for agents",
blurb: "The attribution testbed + mechanism behind “Tamper-Evident ≠ Trustworthy.” Halpern–Pearl actual causality over a structural causal model of the agent; exogenous anchors — provenance, authenticated delegation, internal-state probes — that break the anti-forensics impossibility. Maps onto EU AI Act audit controls.",
tags: ["Python", "TypeScript", "Causality", "Forensics", "EU AI Act"],
metrics: [{ v: "HP", l: "actual causality" }, { v: "EU AI Act", l: "audit mapping" }],
year: "2026",
size: "medium",
accent: "violet",
link: PROFILE.links.forensicsRepo,
paper: PROFILE.links.paperForensics,
seed: 0.37,
},
{
id: "agentbridge",
name: "AgentBridge",
sub: "OpenAI Agents SDK × MCP Reference",
blurb: "Open-source reference for enterprise MCP with the OpenAI Agents SDK & Responses API — eval harness, OTel, guardrails, per-session credential isolation.",
tags: ["Python", "TypeScript", "MCP", "OpenAI"],
metrics: [{ v: "Eval", l: "harness" }, { v: "OTel", l: "spans" }, { v: "Guardrails", l: "+ NHI" }],
year: "2026—",
size: "medium",
accent: "blue",
seed: 0.84,
},
{
id: "cyberway",
name: "CyberWay",
sub: "Enterprise AI Connector Standard",
blurb: "Enterprise-wide development standard for security-first AI connectors — MCP servers, Claude Agent SDK skills, RAG, browser agents. Tool-level RBAC, HITL gateways, NHI lifecycle.",
tags: ["Standard", "RBAC", "HITL", "SOX"],
metrics: [{ v: "All", l: "cyber teams adopted" }],
year: "2025",
size: "small",
accent: "amber",
seed: 0.43,
},
{
id: "superagi",
name: "SuperAGI",
sub: "Founding engineer · autonomous agent framework",
blurb: "Pioneered SuperAGI — 21,000+ GitHub stars. Built backend agent orchestration, tool integration, memory. Adopted by 15,000+ developers globally. Also Supercoder + Contlo.ai ChatGPT plugin.",
tags: ["Python", "Agents", "OSS", "21k★"],
metrics: [{ v: "21k★", l: "github" }, { v: "15k", l: "devs" }],
year: "2023",
size: "medium",
accent: "mint",
link: PROFILE.links.superagi,
seed: 0.07,
},
{
id: "mec",
name: "MEC Server Placement",
sub: "5G edge — Samsung Research",
blurb: "ML algorithm for optimal 5G Mobile Edge Server placement & task scheduling. Reduced server count from 30+ to 11. Best Project; published research paper.",
tags: ["5G", "Optimization", "ML"],
metrics: [{ v: "30→11", l: "servers" }, { v: "Best", l: "project award" }],
year: "2021",
size: "small",
accent: "violet",
link: PROFILE.links.mec,
seed: 0.71,
},
];
const TIMELINE_EVENTS = [
{ yr: "2019", title: "BMS College of Engineering", org: "B.E. Computer Science — CGPA 9.2/10", side: "up", x: 0.04,
blurb: "Started a four-year computer science degree. Got obsessed with autonomous systems and Linux kernel internals." },
{ yr: "2020", title: "HPAIR India Representative", org: "Harvard Project for Asian & International Relations", side: "down", x: 0.18,
blurb: "Selected as India representative to the Harvard Project for Asian & International Relations conference." },
{ yr: "2021", title: "Samsung Research", org: "AI Research Intern — 5G Mobile Edge Computing", side: "up", x: 0.32,
blurb: "Designed an ML algorithm for optimal 5G Mobile Edge Server placement and task scheduling. Cut required servers from 30+ to 11. Awarded Certificate of Excellence — Best Project. Published the underlying research paper." },
{ yr: "2022", title: "Linux Foundation — LiFT Scholar", org: "50 individuals globally", side: "down", x: 0.42,
blurb: "Selected as a Linux Foundation Training Scholar — one of 50 individuals globally. Also attended Open Source Summit as an OSS scholar." },
{ yr: "2023", title: "Founding Engineer — SuperAGI", org: "Apr 2023 → Jul 2023", side: "up", x: 0.52,
blurb: "Pioneered SuperAGI — an autonomous AI agent framework that grew to 21,000+ GitHub stars and 15,000+ developers. Built backend orchestration, tool integration, memory modules. Architected Supercoder (5,000+ developers). Built the ChatGPT-plugin agent layer for Contlo.ai (20,000+ users)." },
{ yr: "2023", title: "Lead Architect → Lilly", org: "Agentic AI & Security Platforms", side: "down", x: 0.66,
blurb: "Joined Eli Lilly as Lead Architect for Agentic AI & Security. Started designing what became MANTIS, the MCP gateway, CyberWay, and the Agentic Identity (NHI) Framework. Won the company-wide Rising Star Award among 10K+ employees." },
{ yr: "2025", title: "NullCon AI Paper of the Year", org: "BSides Bangalore — Speaker", side: "up", x: 0.82,
blurb: "Presented “Autonomous Adversarial Threat Detection Agent” at BSides Bangalore 2025. The paper was selected as NullCon’s AI Paper of the Year. DOI 10.5281/zenodo.19161532." },
{ yr: "2026", title: "AEGIS + AgentBridge", org: "OSS runtime governance for agents", side: "down", x: 0.96,
blurb: "Building AEGIS — open-source production agent observability (the “Wiz for AI Agents”) — and AgentBridge — an OpenAI Agents SDK × MCP reference. Published “Tamper-Evident ≠ Trustworthy,” formalizing forensically sound attribution of agent actions via Halpern–Pearl causality and mapping it onto EU AI Act audit controls. Distilling an enterprise Fortune-500 GenAI rollout into a turnkey toolkit." },
];
const PAPERS = [
{ yr: "2026", title: "Tamper-Evident ≠ Trustworthy: Forensically Sound Attribution of Autonomous-Agent Actions", venue: "Journal · agentic-AI forensics",
note: "Halpern–Pearl actual causality · maps to EU AI Act audit controls · testbed released", doi: "10.5281/zenodo.20698154", link: PROFILE.links.paperForensics },
{ yr: "2025", title: "Autonomous Adversarial Threat Detection Agent", venue: "BSides Bangalore · NullCon AI Paper of the Year",
doi: "10.5281/zenodo.19161532", link: PROFILE.links.paperDOI },
{ yr: "2025", title: "CyberWay — Enterprise AI Connector & Agent Standard", venue: "Internal Publication",
note: "Adopted across all Cybersecurity teams" },
{ yr: "2021", title: "Optimal 5G Mobile Edge Server Placement & Task Scheduling", venue: "Samsung Research Bangalore",
note: "Certificate of Excellence — Best Project" },
];
const TALKS = [
{ yr: "2025", title: "Autonomous Adversarial Threat Detection Agent", venue: "BSides Bangalore — Speaker", kind: "Keynote" },
{ yr: "2020", title: "Harvard Project for Asian & International Relations", venue: "HPAIR India Representative", kind: "Delegate" },
{ yr: "2022", title: "Open Source Summit", venue: "Linux Foundation — Scholar", kind: "Scholar" },
{ yr: "2022", title: "TechBharat National Hackathon", venue: "Finalist", kind: "Finalist" },
];
const AWARDS = [
{ yr: "2024", name: "Rising Star Award", org: "Eli Lilly", scope: "Prestigious annual award — among 10K+ employees" },
{ yr: "2025", name: "NullCon AI Paper of the Year", org: "NullCon", scope: "Autonomous Adversarial Threat Detection Agent" },
{ yr: "2022", name: "LiFT Scholar", org: "The Linux Foundation", scope: "50 individuals globally" },
{ yr: "2021", name: "Certificate of Excellence", org: "Samsung Research", scope: "Best Project — 5G MEC placement" },
{ yr: "2022", name: "AWS DeepRacer", org: "Amazon Web Services", scope: "Ranked 23rd globally" },
{ yr: "2020", name: "HPAIR Representative", org: "Harvard", scope: "India delegation" },
{ yr: "2022", name: "Open Source Summit Scholar", org: "Linux Foundation", scope: "" },
{ yr: "2022", name: "TechBharat Finalist", org: "National Hackathon", scope: "" },
];
const SKILLS = [
{ group: "Languages", items: ["Python", "TypeScript", "Rust", "Go", "SQL", "Bash", "HCL"], hot: ["Python","Rust","TypeScript"] },
{ group: "Agentic AI", items: ["Claude Agent SDK","LangGraph","LangChain","MCP","A2A Protocol","ReAct Agents","Multi-Agent Orchestration","Graph RAG","Tool / Function Calling","Structured Output","NeMo Guardrails","LiteLLM","Langfuse"], hot: ["MCP","Claude Agent SDK","LangGraph","Graph RAG"] },
{ group: "LLM & ML", items: ["Claude API","OpenAI API","PyTorch","HuggingFace Transformers","Reinforcement Learning","FAISS","Embeddings","Stable Baselines3","Prompt Engineering"], hot: ["PyTorch","Reinforcement Learning"] },
{ group: "Cloud & Platform", items: ["AWS Bedrock","SageMaker","Lambda","Step Functions","ECS","EKS","Fargate","Glue","Security Hub","CDK","Azure Entra Workload Identity","Terraform","Docker","Kubernetes","GitHub Actions CI/CD","Temporal"], hot: ["AWS Bedrock","Terraform","ECS Fargate"] },
{ group: "AI Security", items: ["OWASP Agentic Top 10 (ASI)","OWASP LLM Top 10","CSA MAESTRO","MITRE ATLAS","NIST AI RMF","Prompt Injection Defense","A2A Protocol Security","MCP Tool-Poisoning Defense","Memory / Context Integrity","NHI & Agentic Identity","AI Red-Teaming","Lethal-Trifecta Separation","Zero Trust Architecture","Wiz CNAPP","Splunk SIEM","Cloudflare WAF","Zscaler ZIA/ZPA","SOAR"], hot: ["OWASP Agentic Top 10 (ASI)","CSA MAESTRO","NHI & Agentic Identity","Prompt Injection Defense","A2A Protocol Security"] },
{ group: "Data & Observability", items: ["PostgreSQL","DynamoDB","Redis","Elasticsearch","Pinecone","Neptune Analytics","OpenTelemetry","Prometheus","Grafana","ServiceNow"], hot: ["OpenTelemetry","Pinecone"] },
];
const OWASP = [
{ n: "ASI01", t: "Agent Goal & Behavior Hijacking", d: "Direct and indirect prompt injection that redirects an agent’s objective — untrusted text in a page, document, tool result or email rewriting the plan the agent executes.",
defense: "Instruction–data separation, prompt firewall, per-session tool allow-list, and Lethal-Trifecta Separation at the MCP gateway’s L7 safety gate.",
status: "enforced" },
{ n: "ASI02", t: "Tool Misuse & Exploitation", d: "Over-privileged, ambiguous or chainable tools coerced into unsafe calls — the agent’s hands turned against the system.",
defense: "Tool-level RBAC, HITL gateways on every mutation, schema validation; 130+ AI-callable tools each individually safety-gated.",
status: "enforced" },
{ n: "ASI03", t: "Identity & Privilege Abuse", d: "Confused-deputy and credential abuse: an agent borrowing a human’s or workload’s identity to reach what it should never touch.",
defense: "Agentic Identity (NHI) Framework — per-agent Entra Workload Identities, 15-minute JIT credentials, cryptographically attested delegation chains.",
status: "core" },
{ n: "ASI04", t: "Memory & Context Poisoning", d: "Persistent state as an attack surface — poisoned long-term memory, RAG corpora or shared context that re-triggers on future runs.",
defense: "RAG provenance + source-trust scoring at retrieval, signed context, memory-integrity checks; quarantine of untrusted recall.",
status: "enforced" },
{ n: "ASI05", t: "Privilege Escalation", d: "An agent accruing scope over time — chaining tools, roles and sessions to exceed its mandate.",
defense: "Three-tier actor model (human · workload · agent), least-privilege JIT scoping, egress controls, continuous privilege-drift alerts.",
status: "enforced" },
{ n: "ASI06", t: "Cascading Failures", d: "One compromised agent rippling through a multi-agent workflow — a contained fault becoming a system-wide cascade.",
defense: "MANTIS blast-radius graph with PageRank risk propagation, circuit breakers, cost-anomaly kill-switches, and saga-style rollback.",
status: "enforced" },
{ n: "ASI07", t: "Inter-Agent & A2A Exploitation", d: "Abuse of implicit trust between agents — spoofed messages and Agent-Session-Smuggling over the A2A protocol manipulating a peer across a whole conversation.",
defense: "mTLS + OAuth 2.1 proof-of-possession between agents, authenticated A2A messages, per-hop delegation-chain attestation.",
status: "enforced" },
{ n: "ASI08", t: "Human Trust Manipulation", d: "Overreliance — confident, fluent, wrong output steering a human into approving harm.",
defense: "Confidence surfacing, citation-required answers, and the decision flight recorder for replay before any high-impact approval.",
status: "enforced" },
{ n: "ASI09", t: "Rogue Agents & Untraceability", d: "Autonomous action with no defensible record — tamper-evident logs that still can’t prove who or what actually caused an outcome.",
defense: "Agent Forensics — Halpern–Pearl actual-causality attribution over a structural causal model, flight-recorder spans mapped to EU AI Act audit controls.",
status: "shipped" },
{ n: "ASI10", t: "Insecure Orchestration & Supply Chain", d: "Compromised MCP servers, tool manifests, plugins or models — tool-poisoning and supply-chain tampering at load time.",
defense: "MCP server attestation, signed tool manifests, AI-BOM/SBOM, and integrity verification on every server and model load.",
status: "enforced" },
];
// Threat-modeling frameworks the platform is designed and audited against.
const FRAMEWORKS = [
{ abbr: "OWASP ASI", name: "Top 10 for Agentic Applications (2026)", use: "The agentic threat model the MCP gateway, MANTIS & AEGIS are audited against — ASI01–ASI10." },
{ abbr: "CSA MAESTRO", name: "7-Layer Agentic Threat Modeling", use: "Layered threat modeling for multi-agent systems, foundation model up through the agent ecosystem." },
{ abbr: "MITRE ATLAS", name: "Adversarial ML TTP Matrix", use: "Adversary tactics & techniques for ML — the basis for MANTIS detection-as-code and red-team coverage." },
{ abbr: "NIST AI RMF", name: "+ AI 100-2e2025 Adversarial ML", use: "Governance map and adversarial-ML taxonomy steering control selection and risk acceptance." },
{ abbr: "EU AI Act", name: "High-Risk Audit Controls", use: "Logging, traceability & human-oversight duties my agent-forensics work maps directly onto." },
];
const MCP_LAYERS = [
{ n: "L1", title: "Cloudflare Edge", sig: "WAF · rate · geo",
detail: "Edge filtering: WAF rules tuned for OWASP LLM Top-10, rate budgets per principal, geo-fencing against known agentic abuse origins.",
threat: "Volumetric · L7 abuse", example: "cf-zone: agent.cybersecurity.org.com\nrate-limit: 300/min · principal=session\nwaf-rules: llm01-prompt-injection.yml" },
{ n: "L2", title: "AWS WAF", sig: "managed + custom",
detail: "Defense-in-depth: AWS managed rule groups + custom rule groups for MCP protocol abuse (oversized tools list, tool-name fuzzing).",
threat: "Protocol abuse", example: "rule: mcp.tools/list size > 1MB → BLOCK\nrule: tool-name regex anomaly → CAPTCHA" },
{ n: "L3", title: "ALB Routing", sig: "host + path + sni",
detail: "Application Load Balancer terminates mTLS, validates client certificates, routes by host header to the correct MCP server tenant.",
threat: "Tenant crossover", example: "host: payments.mcp.cybersecurity.org.com\n→ target-group: mcp-payments-fargate\nmtls: required" },
{ n: "L4", title: "Network Isolation", sig: "VPC · SG · NACL",
detail: "Each MCP server in its own subnet. Security groups deny east-west by default. Egress only through inspected NAT.",
threat: "Lateral movement", example: "sg: deny-east-west\negress: nat-inspect-only\nsubnet: /28 per tenant" },
{ n: "L5", title: "OAuth 2.1 + Agentic Auth", sig: "delegation chains",
detail: "OAuth 2.1 with proof-of-possession. Agentic Auth: delegation chain crypto-attested, JIT credentials with 15-minute TTL.",
threat: "Confused deputy", example: "actor: agent/forensics\ndelegated-by: human:ayush\nttl: 15m\ndpop: ed25519:..." },
{ n: "L6", title: "3-tier RBAC", sig: "human · workload · agent",
detail: "Three-category actor model from the NHI Framework. Each actor type evaluated against a distinct policy class.",
threat: "Privilege escalation", example: "actor.type ∈ {human, workload, agent}\npolicy.class[agent]: requires HITL on mutation" },
{ n: "L7", title: "Tool-level Safety Gate", sig: "per-call evaluation",
detail: "Final gate per tool call. Schema validation, lethal-trifecta check (input + creds + mutation), structured audit log, decision flight recorder.",
threat: "Lethal Trifecta", example: "tool: pay.transfer\nlethal-trifecta: { untrusted: true, creds: true, mutation: true } → DENY" },
];
const MANTIS_ENGINES = [
{ name: "ViT classifier", conf: 0.96 },
{ name: "BERT semantic", conf: 0.93 },
{ name: "Log anomaly TX", conf: 0.91 },
{ name: "DGA detector", conf: 0.94 },
{ name: "UEBA behavior", conf: 0.88 },
{ name: "Sigma rules", conf: 0.99 },
{ name: "MITRE ATT&CK", conf: 0.92 },
{ name: "Graph PageRank", conf: 0.86 },
{ name: "Federated TI", conf: 0.84 },
{ name: "Prompt-inject guard", conf: 0.97 },
{ name: "Model integrity", conf: 0.98 },
{ name: "RL response (PPO)", conf: 0.89 },
];
const MANTIS_STAGES = [
{ num: "01", title: "Detect", blurb: "12-engine parallel detection. Weighted confidence fusion across ViT, BERT, transformer anomaly, DGA, UEBA, Sigma." },
{ num: "02", title: "Investigate", blurb: "ReAct autonomous agent with 15 tools. Multi-LLM consensus before forming a hypothesis." },
{ num: "03", title: "Respond", blurb: "RL response engine (PPO/DQN) chooses containment moves. Detection-as-Code with closed-loop analyst feedback." },
{ num: "04", title: "Govern", blurb: "Security knowledge graph + PageRank risk propagation. Federated TI with differential privacy. AI self-defense layer." },
];
const SOC_EVENTS = [
{ ts: "T+00.0s", agent: "watcher", color: "amber", msg: "incident 2026-3814 escalated. severity high. source=edge-eu-1." },
{ ts: "T+00.4s", agent: "planner", color: "mint", msg: "spawning subagents: [forensics, identity, network, threat-intel]" },
{ ts: "T+01.1s", agent: "forensics", color: "violet", msg: "flight-recorder snapshot captured. 348 spans · 12 tool calls" },
{ ts: "T+01.6s", agent: "identity", color: "blue", msg: "principal=workload/etl-batch. nhi-ttl=72m. flagged: privilege drift." },
{ ts: "T+02.3s", agent: "threat-intel", color: "amber", msg: "ioc match: 3 indicators · campaign=cobalt-dna · confidence 0.91" },
{ ts: "T+02.8s", agent: "forensics", color: "violet", msg: "graph pagerank: blast radius = 14 nodes. critical path: db.primary→idp" },
{ ts: "T+03.5s", agent: "executor", color: "mint", msg: "action proposed: revoke nhi, isolate ec2, freeze pipeline." },
{ ts: "T+03.7s", agent: "critic", color: "amber", msg: "lethal-trifecta check: PASS (mutation requires HITL gate)" },
{ ts: "T+04.0s", agent: "executor", color: "mint", msg: "awaiting analyst confirm · saga-rollback armed · TTL=12m" },
{ ts: "T+04.4s", agent: "watcher", color: "mint", msg: "containment confirmed. ticket closed. cost=$2.10 · tokens=8200" },
];
const TICKER_ITEMS = [
{ kind: "live", k: "incidents resolved", v: "+812 today", span: "" },
{ kind: "live", k: "active agents", v: "27", span: "" },
{ kind: "live", k: "owasp-10 compliance", v: "10 / 10", span: "ENFORCED" },
{ kind: "warn", k: "nhi drift alerts", v: "3", span: "P3" },
{ kind: "live", k: "mcp gateway uptime", v: "99.997%", span: "" },
{ kind: "live", k: "lethal-trifecta separation", v: "active", span: "" },
{ kind: "live", k: "github stars · superagi", v: "21k+", span: "" },
{ kind: "live", k: "nullcon ai paper of the year", v: "2025", span: "★" },
];
window.AYUSH = { PROFILE, NUMBERS, PROJECTS, TIMELINE_EVENTS, PAPERS, TALKS, AWARDS, SKILLS, OWASP, FRAMEWORKS, MCP_LAYERS, MANTIS_ENGINES, MANTIS_STAGES, SOC_EVENTS, TICKER_ITEMS };