Safeguard
Topic

AI Security

In-depth guides and analysis on ai security from the Safeguard engineering team.

676 articles

AI Security

RBAC & Scoping: Griffin AI vs Mythos

An AI that reads your security data needs the same access controls as a human analyst. Most pure-LLM vendors stop at the role name. Safeguard enforces the scope.

Feb 8, 20267 min read
AI Security

MCP Server Multi-Tenant Isolation

Practical guidance on isolating tenants on shared Model Context Protocol servers, covering identity, data, compute, and observability boundaries at production scale.

Feb 8, 20267 min read
AI Security

AI Model Weights: Signing, Attestation, Provenance

Model weights are binaries with the privilege of code and the review of documents. Here is what signing, attestation, and provenance should actually look like.

Feb 8, 20267 min read
AI Security

AI-BOM Adoption: State of the Art in 2026

The AI Bill of Materials went from concept paper to procurement requirement in under two years. Here is what the current state of the art actually looks like.

Feb 7, 20266 min read
AI Security

Fix Explanation Quality: Griffin AI vs Mythos

A remediation PR explanation is either evidence or storytelling. Griffin AI attaches taint paths and disproof attempts; Mythos-class tools attach plausible prose.

Feb 7, 20267 min read
AI Security

Dynamic Dispatch: Griffin AI vs Mythos

Dynamic dispatch hides real exploits behind indirection. Griffin AI models the dispatch; Mythos-class tools guess. That gap changes outcomes.

Feb 6, 20267 min read
AI Security

ISO 27001 Mapping: Griffin AI vs Mythos

ISO 27001 Annex A has 93 controls in the 2022 revision, each needing documented evidence. Griffin AI emits records that map cleanly. Mythos-class pure-LLM tools force control owners to narrate.

Feb 5, 20267 min read
AI Security

VEX Integration: Griffin AI vs Mythos

VEX is how you turn a vulnerability list into an actionable work queue. Griffin AI ingests VEX documents as structured statements that filter findings at policy time. Mythos-class tools read them as advisory prose and lose the filtering entirely.

Feb 5, 20267 min read
AI Security

LLM Output Filtering as a Security Control

Output filters are the last line before the user and the tool call. We cover when they work, when they fail, and how to measure them honestly in production.

Feb 5, 20265 min read
AI Security

LLM Jailbreak as a Supply Chain Risk in 2026

A jailbreak in a model you ship downstream is a supply chain incident, not a trivia item. Here is how to reason about it and where the defensive controls belong.

Feb 5, 20268 min read
AI Security

Griffin AI vs Inflection Pi for Security Assistance

Feb 4, 20266 min read
AI Security

Path Traversal: Griffin AI vs Mythos

Path traversal is the vulnerability class that punishes lazy analysis. Framework-specific path normalisation, OS-dependent separators, symbolic link resolution, and archive extraction all hide exploitable gaps behind code that looks defensive. Griffin's engine resolves path operations with actual semantics; Mythos reads the variable name and calls it a day.

Feb 4, 20267 min read
AI Security (Page 36) — Supply Chain Security Blog | Safeguard