Safeguard
Tag

2026

Safeguard articles tagged "2026" — guides, analysis, and best practices for software supply chain and application security.

42 articles

Industry Analysis

Code Signing Key Theft Trend Watch

Code signing key theft has surged across 2025 and 2026. We trace the recurring incident patterns, the operator tradecraft, and the structural defenses that work.

Mar 11, 20268 min read
AI Security

AI-BOM Becoming Mandatory: Regulatory Trend

AI bills of materials moved from voluntary best practice to regulatory requirement in 2026. Multiple jurisdictions now require disclosure of model, data, and component lineage for high-impact AI systems.

Mar 10, 20267 min read
Best Practices

How to Rotate Leaked Secrets With Automation (2026)

The 2026 playbook for automated secret rotation: detection pipelines, credential broker patterns, blast-radius analysis, and CI integration that actually holds up in production.

Mar 10, 20268 min read
Regulatory Compliance

FTC Data Broker Rule And Supply Chain Overlap

A senior engineer's view of how FTC data broker rulemaking through 2025 and 2026 intersects with software supply chain expectations for organizations handling personal data.

Mar 9, 20267 min read
Industry Analysis

Ransomware Via Software Supply Chain In 2026

Ransomware operators increasingly enter victims through software supply chain pathways. We analyze the 2026 patterns, the affiliate dynamics, and what defenders should do.

Mar 6, 20267 min read
AI Security

Frontier Model Pricing Pressure: Architectural Response

Frontier model pricing is rising even as cheaper alternatives proliferate. The 2026 architectural response is multi-tier model routing — and the security implications are non-trivial.

Mar 5, 20268 min read
Regulatory Compliance

DORA Financial Sector Supply Chain Controls

A senior engineer's view of how DORA's ICT third-party risk management requirements are reshaping software supply chain controls across European financial services.

Mar 4, 20268 min read
Industry Analysis

Nation-State Supply Chain Tradecraft Update

Nation-state supply chain tradecraft has evolved sharply since SolarWinds. We trace the 2025 to 2026 patterns, the operational signatures, and defensive implications.

Mar 1, 20267 min read
AI Security

Open-Source LLM Supply Chain Incidents 2026

Open-source LLM ecosystems hit a turning point in 2026 as supply chain incidents — backdoored fine-tunes, compromised weights, malicious adapter packages — moved from rare to recurring.

Feb 28, 20268 min read
Regulatory Compliance

Australia Essential Eight 2026: Supply Chain

A senior engineer's view of how Australia's Essential Eight evolved through 2025 and 2026 to incorporate software supply chain expectations alongside the original mitigations.

Feb 27, 20268 min read
AI Security

EU AI Act Enforcement: Year One Review

The first enforcement window under the EU AI Act has closed. The actual pattern of enforcement looks different from the one vendors and advocacy groups predicted.

Feb 15, 20267 min read
AI Security

AI-BOM Adoption: State of the Art in 2026

The AI Bill of Materials went from concept paper to procurement requirement in under two years. Here is what the current state of the art actually looks like.

Feb 7, 20266 min read
2026 (Page 3) — Safeguard Blog