diff --git a/cheatsheets/AI_Agent_Security_Cheat_Sheet.md b/cheatsheets/AI_Agent_Security_Cheat_Sheet.md
index c47b52e202..316dc3d7b9 100644
--- a/cheatsheets/AI_Agent_Security_Cheat_Sheet.md
+++ b/cheatsheets/AI_Agent_Security_Cheat_Sheet.md
@@ -15,6 +15,8 @@ AI agents are autonomous systems powered by Large Language Models (LLMs) that ca
 - **Cascading Failures**: Compromised agents in multi-agent systems propagating attacks to other agents.
 - **Denial of Wallet (DoW)**: Attacks causing excessive API/compute costs through unbounded agent loops.
 - **Sensitive Data Exposure**: PII, credentials, or confidential data inadvertently included in agent context or logs.
+- **Supply Chain Attacks**: Compromising third-party tools, APIs, or data sources used by agents.
+- **AI Console Malicious Configuration**: Malicious input consumed by the underlying AAL that prompts a change in the configuration of a poorly protected developer console.
 
 ## Best Practices