{"paper":{"title":"Autonomous Intelligent Agents for Natural-Language-Driven Web Execution with Integrated Security Assurance","license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","headline":"An AI agent framework converts natural-language instructions into reliable web test scripts and OWASP-aligned security probes.","cross_cats":["cs.AI"],"primary_cat":"cs.CR","authors_text":"Shrey Tyagi, Siva Rama Krishna Varma Bayyavarapu, Vinil Pasupuleti","submitted_at":"2026-05-14T18:00:30Z","abstract_excerpt":"Modern web test suites rot. A UI refactor breaks locators, a timing change causes race conditions, and within weeks developers abandon the suite entirely. This paper presents an AI-driven autonomous testing framework that addresses these failure modes through five integrated strategies - navigation reliability, context-aware selector generation, post-generation validation, smart wait injection, and failure learning - implemented over a containerised worker architecture that decouples orchestration from long-running browser execution. Evaluated across four production applications and 176 scenar"},"claims":{"count":4,"items":[{"kind":"strongest_claim","text":"Evaluated across four production applications and 176 scenarios, the framework improves script generation success from 55% to 93%, achieves an 8x reduction in navigation failures, eliminates 80% of timing-related race conditions, and reduces test creation time by 75% compared to manual Selenium authoring. It detects 85% of authentication bypass vulnerabilities and 95% of input validation flaws with false positive rates below 12%.","source":"verdict.strongest_claim","status":"machine_extracted","claim_id":"C1","attestation":"unclaimed"},{"kind":"weakest_assumption","text":"The four production applications and 176 scenarios used for evaluation are representative of typical web applications and that natural-language descriptions of attack scenarios can be reliably mapped to complete OWASP-aligned probes without missing critical edge cases or introducing bias in the reported detection rates.","source":"verdict.weakest_assumption","status":"machine_extracted","claim_id":"C2","attestation":"unclaimed"},{"kind":"one_line_summary","text":"AI agents generate and execute natural-language web tests with built-in security validation, raising success rates and cutting failures in production applications.","source":"verdict.one_line_summary","status":"machine_extracted","claim_id":"C3","attestation":"unclaimed"},{"kind":"headline","text":"An AI agent framework converts natural-language instructions into reliable web test scripts and OWASP-aligned security probes.","source":"verdict.pith_extraction.headline","status":"machine_extracted","claim_id":"C4","attestation":"unclaimed"}],"snapshot_sha256":"d80ed0b79a292823cf63faf10700447685d4807cbe96ea796bc8cc38507236d8"},"source":{"id":"2605.15281","kind":"arxiv","version":1},"verdict":{"id":"763c3b3e-822a-4865-9c2a-ed9673d1eb6b","model_set":{"reader":"grok-4.3"},"created_at":"2026-05-19T15:18:20.196900Z","strongest_claim":"Evaluated across four production applications and 176 scenarios, the framework improves script generation success from 55% to 93%, achieves an 8x reduction in navigation failures, eliminates 80% of timing-related race conditions, and reduces test creation time by 75% compared to manual Selenium authoring. It detects 85% of authentication bypass vulnerabilities and 95% of input validation flaws with false positive rates below 12%.","one_line_summary":"AI agents generate and execute natural-language web tests with built-in security validation, raising success rates and cutting failures in production applications.","pipeline_version":"pith-pipeline@v0.9.0","weakest_assumption":"The four production applications and 176 scenarios used for evaluation are representative of typical web applications and that natural-language descriptions of attack scenarios can be reliably mapped to complete OWASP-aligned probes without missing critical edge cases or introducing bias in the reported detection rates.","pith_extraction_headline":"An AI agent framework converts natural-language instructions into reliable web test scripts and OWASP-aligned security probes."},"integrity":{"clean":true,"summary":{"advisory":0,"critical":0,"by_detector":{},"informational":0},"endpoint":"/pith/2605.15281/integrity.json","findings":[],"available":true,"detectors_run":[{"name":"doi_compliance","ran_at":"2026-05-19T15:31:34.045612Z","status":"completed","version":"1.0.0","findings_count":0},{"name":"doi_title_agreement","ran_at":"2026-05-19T15:31:17.914015Z","status":"completed","version":"1.0.0","findings_count":0},{"name":"claim_evidence","ran_at":"2026-05-19T14:41:54.250330Z","status":"completed","version":"1.0.0","findings_count":0},{"name":"ai_meta_artifact","ran_at":"2026-05-19T13:33:22.797186Z","status":"skipped","version":"1.0.0","findings_count":0}],"snapshot_sha256":"7fc53c4f6aa1336730949671d7ca1605b0ca85d2951c6e833672f7c97ca01e84"},"references":{"count":21,"sample":[{"doi":"","year":2021,"title":"Evaluating Large Language Models Trained on Code","work_id":"042493e9-b26f-4b4e-bbde-382072ca9b08","ref_index":1,"cited_arxiv_id":"2107.03374","is_internal_anchor":true},{"doi":"","year":2014,"title":"Reducing Web Test Cases Aging by Means of Robust XPath Locators,","work_id":"96bf3264-554a-4cea-9bd7-5b0cabf0ce71","ref_index":2,"cited_arxiv_id":"","is_internal_anchor":false},{"doi":"","year":2023,"title":"OW ASP Testing Guide v4.2,","work_id":"8146fee6-f8de-4d6d-ada7-77a1549e15fc","ref_index":3,"cited_arxiv_id":"","is_internal_anchor":false},{"doi":"","year":2011,"title":"The Tangled Web: A Guide to Securing Modern Web Applications,","work_id":"1682fc12-7326-4fc6-8d78-ed18a161f7e7","ref_index":4,"cited_arxiv_id":"","is_internal_anchor":false},{"doi":"","year":2012,"title":"Enemy of the State: A State-Aware Black-Box Web Vulnerability Scanner,","work_id":"95da4900-58f1-471d-a9c1-03406e9a961f","ref_index":5,"cited_arxiv_id":"","is_internal_anchor":false}],"resolved_work":21,"snapshot_sha256":"749340b1eb862ae44695e1e6bb8ee6504ddee1f5edd7d33b90b0402553ec9f5c","internal_anchors":4},"formal_canon":{"evidence_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"author_claims":{"count":0,"strong_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"builder_version":"pith-number-builder-2026-05-17-v1"}