SAFE-AUCA is a community library of real-world use case analyses for agentic workflows (MCP-enabled systems and tool-using agents), mapped to SAFE‑MCP techniques.
SAFE‑MCP → catalogs what can go wrong (attack/failure techniques)
SAFE‑AUCA → shows where it happens in reality (workflow + tools + trust boundaries + autonomy) and turns techniques into controls + tests
Quick links:
- SAFE‑MCP technique catalog
- Contributing:
CONTRIBUTING.md - Use case template:
templates/use-case-template.md - Canonical (machine‑readable) registry:
use-cases.naics2022.crosswalk.json
Techniques alone aren’t enough: the same technique can be low-risk in one workflow and catastrophic in another.
Each detailed use case analysis connects the dots:
Workflow + operating mode (manual → HITL → autonomous)
→ Kill-chain / failure analysis (defender-friendly; no exploit steps)
→ SAFE‑MCP technique IDs
→ Controls, detections, and validation tests
We seed a stable list of SAFE-UC-XXXX IDs (like SAFE‑MCP), then contributors “pick up” an ID and write the detailed analysis.
- Pick a use case ID below with Status = Seed
- Create the folder at the linked canonical location and write the README using the template
- Update the canonical registry (
use-cases.naics2022.crosswalk.json) and open a PR
Every contribution must follow the safety rules in CONTRIBUTING.md: no sensitive info, no exploit instructions, grounded in public evidence.
How it works:
| Step | What happens |
|---|---|
| 1. Open an issue | Propose New Use Case or Claim Existing Seed |
| 2. ID assigned | Automation assigns the next available SAFE-UC-XXXX and updates the issue title |
| 3. Maintainer accepts | A maintainer reviews your proposal and comments /accept |
| 4. PR created for you | After acceptance, automation scaffolds the seed (folder, README, registry entry, index row) and opens a PR assigned to you |
| 5. Expand & merge | You expand the seed into a full analysis, ensure validation passes, and get DSO signoff |
Quick contributor workflow:
- Read
CONTRIBUTING.md(source of truth). - Propose New Use Case or Claim Existing Seed.
- Ensure PR check
Registry and Docs Validationpasses. - Get required DSO signoff before merge (details in
CONTRIBUTING.md).
How to read this table
- One row per use case (
SAFE-UC-XXXXis the primary object). - NAICS is a crosswalk/mapping field, not a parent folder.
- A use case can map to multiple NAICS codes (shown in the same row).
- Some NAICS sectors use combined-sector shorthand (e.g., 31–33, 44–45, 48–49).
Status legend
- Seed: ID reserved + mapping exists; detailed write-up may not exist yet (you can contribute it)
- Draft: first detailed write-up exists and can be expanded
- Published: reviewed and ready for broad use
| SAFE Use Case ID | Use case title | NAICS 2022 industry mapping (Name + Code) | Status |
|---|---|---|---|
| SAFE-UC-0001 | AI-assisted seller listing creation | Retail Trade (44–45) | Seed |
| SAFE-UC-0002 | Personalized shopping sidekick | Retail Trade (44–45) | Seed |
| SAFE-UC-0003 | Buyer-seller messaging assistant | Retail Trade (44–45) | Seed |
| SAFE-UC-0004 | Listing media enhancement assistant | Retail Trade (44–45) | Seed |
| SAFE-UC-0005 | Visual search & image-based product discovery | Retail Trade (44–45) | Seed |
| SAFE-UC-0006 | Fleet telematics & vehicle-health monitoring assistant | Transportation and Warehousing (48–49) | Seed |
| SAFE-UC-0007 | Mobile fleet-maintenance dispatch & scheduling assistant | Other Services (except Public Administration) (81) | Seed |
| SAFE-UC-0008 | Over-the-air vehicle software update orchestration | Manufacturing (31–33) | Seed |
| SAFE-UC-0009 | Manufacturing line visual inspection assistant | Manufacturing (31–33) | Seed |
| SAFE-UC-0010 | In-vehicle voice assistant for local controls | Manufacturing (31–33) | Seed |
| SAFE-UC-0011 | Banking virtual assistant | Finance and Insurance (52) | Seed |
| SAFE-UC-0012 | Interactive fraud alert & card controls assistant | Finance and Insurance (52) | Seed |
| SAFE-UC-0013 | Virtual card number generation & checkout assistant | Finance and Insurance (52) | Seed |
| SAFE-UC-0014 | Digital dispute/chargeback intake assistant | Finance and Insurance (52) | Seed |
| SAFE-UC-0015 | AML suspicious-activity triage assistant | Finance and Insurance (52) | Seed |
| SAFE-UC-0016 | IT service-desk virtual agent | Information (51) | Seed |
| SAFE-UC-0017 | Service request triage assistant | Information (51) | Seed |
| SAFE-UC-0018 | Work-item summarization assistant (thread + context summaries) | Information (51) Software Publishers (513210) |
Draft |
| SAFE-UC-0019 | Post-incident review drafting assistant | Information (51) | Seed |
| SAFE-UC-0020 | On-call incident context assistant | Information (51) | Seed |
| SAFE-UC-0021 | Contact-center agent assist | Administrative and Support and Waste Management and Remediation Services (56) | Seed |
| SAFE-UC-0022 | Security operations investigation assistant | Professional, Scientific, and Technical Services (54) | Seed |
| SAFE-UC-0023 | Cloud ops troubleshooting assistant | Information (51) | Seed |
| SAFE-UC-0024 | Terminal-based outage assistant for SRE | Information (51) | Seed |
| SAFE-UC-0025 | Enterprise agent-building platform | Information (51) | Seed |
| SAFE-UC-0026 | At-scale content policy enforcement pipeline | Information (51) | Seed |
| SAFE-UC-0027 | Anti-scam messaging safety assistant | Information (51) | Seed |
| SAFE-UC-0028 | Fake-account & inauthentic behavior detection assistant | Information (51) | Seed |
| SAFE-UC-0029 | Automated ad campaign optimization assistant | Professional, Scientific, and Technical Services (54) | Seed |
| SAFE-UC-0030 | Teen safety & age-assurance enforcement assistant | Information (51) | Seed |
| SAFE-UC-0032 | Agentic orchestration for marketplace embedded lending | Finance and Insurance (52) Other Activities Related to Credit Intermediation (522390) Electronic Shopping and Mail-Order Houses (454110) |
Draft |
| SAFE-UC-0033 | Skill-driven web app regression testing assistant for pull requests | Information (51) Software Publishers (513210) |
Draft |
| SAFE-UC-0034 | Saved credit card payment flow | Finance and Insurance (52) Financial Transactions Processing, Reserve, and Clearinghouse Activities (522320) |
Seed |
Don't see your use case? Propose a new one — automation assigns the next
SAFE-UC-XXXXID and, once a maintainer accepts, scaffolds the seed and opens a PR for you.