# damn-vulnerable-ai-agent

> The AI agent you're supposed to break. 14 agents, 12 vulnerability categories, zero consequences.

- **URL**: https://www.freshcrate.ai/projects/damn-vulnerable-ai-agent
- **Author**: OpenA2A
- **Category**: MCP Servers
- **Latest version**: `v0.9.1` (2026-05-28)
- **License**: Apache-2.0
- **Source**: https://github.com/opena2a-org/damn-vulnerable-ai-agent
- **Homepage**: https://github.com/opena2a-org/damn-vulnerable-ai-agent#readme
- **Language**: JavaScript
- **GitHub**: 15 stars, 11 forks
- **Registry**: npm (`damn-vulnerable-ai-agent`)
- **Tags**: `a2a`, `agent`, `ai-security`, `llm`, `mcp`, `npm`, `security-training`, `testing`, `vulnerable`

## Description

The AI agent you're supposed to break. 14 agents, 12 vulnerability categories, zero consequences.

## Recent releases

| Version | Date | Urgency | Changes |
| --- | --- | --- | --- |
| `v0.9.1` | 2026-05-28 | High | ## What's Changed * chore(release): 0.9.1 — drain 0.9.0 known-issues by @thebenignhacker in https://github.com/opena2a-org/damn-vulnerable-ai-agent/pull/49   **Full Changelog**: https://github.com/opena2a-org/damn-vulnerable-ai-agent/compare/v0.9.0...v0.9.1 |
| `0.7.4` | 2026-04-21 | Low | Imported from npm (0.7.4) |
| `v0.7.4` | 2026-04-14 | Medium | ## Fixes  - **Dockerfile missing `npm install`** (#29): The container image shipped without `node_modules`, causing `ERR_MODULE_NOT_FOUND: Cannot find package 'openai'` on boot. Added `RUN npm install --omit=dev` after the `package.json`/`package-lock.json` copy so production deps actually land in the image. Thanks @dwx007 for reporting. (#31)  ## Verification  - `docker compose build --no-cache` succeeds - Container boots all 14 agents - `src/playground/engine.js` imports cleanly (the file from |
| `v0.7.4` | 2026-04-14 | Medium | ## Fixes  - **Dockerfile missing `npm install`** (#29): The container image shipped without `node_modules`, causing `ERR_MODULE_NOT_FOUND: Cannot find package 'openai'` on boot. Added `RUN npm install --omit=dev` after the `package.json`/`package-lock.json` copy so production deps actually land in the image. Thanks @dwx007 for reporting. (#31)  ## Verification  - `docker compose build --no-cache` succeeds - Container boots all 14 agents - `src/playground/engine.js` imports cleanly (the file from |
| `v0.7.4` | 2026-04-14 | Medium | ## Fixes  - **Dockerfile missing `npm install`** (#29): The container image shipped without `node_modules`, causing `ERR_MODULE_NOT_FOUND: Cannot find package 'openai'` on boot. Added `RUN npm install --omit=dev` after the `package.json`/`package-lock.json` copy so production deps actually land in the image. Thanks @dwx007 for reporting. (#31)  ## Verification  - `docker compose build --no-cache` succeeds - Container boots all 14 agents - `src/playground/engine.js` imports cleanly (the file from |
| `v0.7.4` | 2026-04-14 | Medium | ## Fixes  - **Dockerfile missing `npm install`** (#29): The container image shipped without `node_modules`, causing `ERR_MODULE_NOT_FOUND: Cannot find package 'openai'` on boot. Added `RUN npm install --omit=dev` after the `package.json`/`package-lock.json` copy so production deps actually land in the image. Thanks @dwx007 for reporting. (#31)  ## Verification  - `docker compose build --no-cache` succeeds - Container boots all 14 agents - `src/playground/engine.js` imports cleanly (the file from |
| `v0.7.4` | 2026-04-14 | Medium | ## Fixes  - **Dockerfile missing `npm install`** (#29): The container image shipped without `node_modules`, causing `ERR_MODULE_NOT_FOUND: Cannot find package 'openai'` on boot. Added `RUN npm install --omit=dev` after the `package.json`/`package-lock.json` copy so production deps actually land in the image. Thanks @dwx007 for reporting. (#31)  ## Verification  - `docker compose build --no-cache` succeeds - Container boots all 14 agents - `src/playground/engine.js` imports cleanly (the file from |
| `v0.7.4` | 2026-04-14 | Medium | ## Fixes  - **Dockerfile missing `npm install`** (#29): The container image shipped without `node_modules`, causing `ERR_MODULE_NOT_FOUND: Cannot find package 'openai'` on boot. Added `RUN npm install --omit=dev` after the `package.json`/`package-lock.json` copy so production deps actually land in the image. Thanks @dwx007 for reporting. (#31)  ## Verification  - `docker compose build --no-cache` succeeds - Container boots all 14 agents - `src/playground/engine.js` imports cleanly (the file from |
| `v0.7.4` | 2026-04-14 | Medium | ## Fixes  - **Dockerfile missing `npm install`** (#29): The container image shipped without `node_modules`, causing `ERR_MODULE_NOT_FOUND: Cannot find package 'openai'` on boot. Added `RUN npm install --omit=dev` after the `package.json`/`package-lock.json` copy so production deps actually land in the image. Thanks @dwx007 for reporting. (#31)  ## Verification  - `docker compose build --no-cache` succeeds - Container boots all 14 agents - `src/playground/engine.js` imports cleanly (the file from |
| `v0.7.4` | 2026-04-14 | Medium | ## Fixes  - **Dockerfile missing `npm install`** (#29): The container image shipped without `node_modules`, causing `ERR_MODULE_NOT_FOUND: Cannot find package 'openai'` on boot. Added `RUN npm install --omit=dev` after the `package.json`/`package-lock.json` copy so production deps actually land in the image. Thanks @dwx007 for reporting. (#31)  ## Verification  - `docker compose build --no-cache` succeeds - Container boots all 14 agents - `src/playground/engine.js` imports cleanly (the file from |

## Citation

- HTML: https://www.freshcrate.ai/projects/damn-vulnerable-ai-agent
- Markdown: https://www.freshcrate.ai/projects/damn-vulnerable-ai-agent.md
- Dependencies JSON: https://www.freshcrate.ai/api/projects/damn-vulnerable-ai-agent/deps

_Generated by freshcrate.ai. Indexes npm releases for AI-agent ecosystem packages._