ai-governance
Safeguard articles tagged "ai-governance" — guides, analysis, and best practices for software supply chain and application security.
31 articles
How AI safety benchmarks and evaluations measure model risk
A concrete look at how AI safety benchmark evaluation, LLM safety scorecards, and capability testing actually measure model risk in 2026 — and where they fall short.
What shadow AI is and how to discover unsanctioned AI use...
Shadow AI risk is spreading faster than governance can keep up. Here's what unsanctioned AI use looks like inside real enterprises and how to discover it before data leaks.
Building an AI governance framework for enterprise risk m...
A practical breakdown of what an AI governance framework needs to contain in 2026 — from NIST's AI RMF to EU AI Act deadlines — and how to build one that scales with engineering velocity.
Model Theft: Protecting Proprietary LLMs from Extraction ...
A $20 API attack can clone a production LLM's embeddings. Here's how model extraction works, real incidents from LLaMA to DeepSeek, and how to protect proprietary models.
EU AI Act Article 5: Prohibited Practices Now Enforceable
Article 5 of the EU AI Act became enforceable on 2 August 2025, with administrative fines up to €35 million or 7% of worldwide turnover for prohibited AI practices.
What an AI Model Risk Registry Should Actually Track
Most AI model inventories are name-and-owner spreadsheets. Here's the provenance, licensing, CVE, and revalidation fields a real AI model risk registry needs to track.
The Rise of 'Security for AI' as a Distinct Product Category
Security for AI has become its own product category—backed by NIST, OWASP, and MITRE frameworks and real M&A. Here's why it's really a supply chain problem.