ai-security
Safeguard articles tagged "ai-security" — guides, analysis, and best practices for software supply chain and application security.
532 articles
MCP Server Capability Drift Detection
MCP servers do not stay still. Tool surfaces drift, scopes expand, and the server you approved is not the server in production. Here is how to catch that.
Prompt Injection From Research To Bug Bounty
Prompt injection started as a research curiosity. In 2026 it is a regular line item on bug bounty leaderboards, with payout norms, scope definitions, and a maturing triage culture.
Guardrail Consolidation: Market Dynamics 2026
Two dozen AI guardrail vendors in 2023. A much smaller set in 2026. The consolidation has pattern — integrated platforms beat standalone guardrails.
Evidence-Attached Fix PRs Reviewers Trust
Reviewers trust fix PRs that come with evidence. Here is how to attach the right evidence so AI-assisted remediation gets approved on the first pass.
Breaking Change Awareness: Griffin AI vs Mythos
An auto-fix that closes a vulnerability and breaks the build is not a fix. Breaking-change awareness separates auto-PRs that ship from auto-PRs that get reverted.
AWS Bedrock Guardrails for Agent Workloads: A Defender's Walkthrough
Bedrock Guardrails now span prompt filtering, contextual grounding checks, and tool-use policies. We trace how they fit into a supply chain threat model for production agents.
AI-BOM and ML-BOM: The State of Standards in 2026
Where AI-BOM and ML-BOM specifications stand in 2026, which formats have real adoption, and what to capture today even if the standards are still in motion.
GenAI Code Assistants and Package Hallucination: 2026 Update
LLM-suggested package names that do not exist are a registered attack vector in 2026. Here is where hallucination rates sit today and how to contain them.
Prompt Injection Defences: Griffin AI vs Mythos
Prompt injection is the defining AI security problem of this generation. The defences are structural, not cosmetic — and the architectural choices show.
Proof-Of-Concept Payloads From Discovered Paths
A taint path is not an exploit. Here is how a zero-day pipeline turns a reachable flow into a defensible proof-of-concept payload without inventing a vulnerability.
Enterprise AI Metric Design For Executive Reporting
AI-for-security metrics that show up on board slides are different from the ones engineers use day-to-day. Designing both sets properly is the work.
MCP Client-Side Security Considerations
The MCP client surface is often overlooked. We examine trust boundaries, schema handling, credential storage, and safe defaults for the agent side of the protocol.