ai-security
Safeguard articles tagged "ai-security" — guides, analysis, and best practices for software supply chain and application security.
532 articles
MCP Server Rate-Limiting Patterns
A practical look at rate-limiting patterns for Model Context Protocol servers, covering per-tool quotas, token budgets, burst control, and abuse-resistant designs.
Securing MCP Servers in the Enterprise: A Practical Guide
MCP servers connect AI agents to your infrastructure. Here's how to secure them without killing the productivity gains.
Framework Routing Awareness: Griffin AI vs Mythos
Every HTTP vulnerability begins at a route. Griffin AI models routing; Mythos-class tools guess it. That difference shapes every downstream finding.
The OWASP Top 10 for Large Language Model Applications: A Field Guide
A working breakdown of the OWASP Top 10 for Large Language Model Applications — what each risk actually looks like in production and how teams are testing for it.
Copilot Code Review Security: What It Misses
Copilot's code review is useful. It is also not a security review, and treating it as one is how vulnerabilities ship. Here is what it actually catches.
Cursor IDE Security Model: What Enterprises Need to Know
Cursor's 2026 security model introduces privacy modes, indexing controls, and agent sandboxes. Here is the enterprise-ready view of what works.
Griffin AI vs Reka Multimodal for Security
Reka's multimodal models are interesting for specific security workflows. The question is whether multimodal is the binding constraint, and usually it isn't.
Enterprise AI Incident Response Playbooks
AI incidents are not the same shape as traditional security incidents. The playbooks need to be specific to how AI systems actually fail.
Griffin AI vs Gemma for Lightweight Scanning
Gemma is built for efficiency. Can a small open-weight model replace Griffin AI for lightweight scanning workflows, or does the engine still matter?
Novel Bug Class Detection: Griffin AI vs Mythos
What happens when the bug does not match any known CWE? A study of how grounded and pure-LLM scanners perform on genuinely novel vulnerability patterns.
Prompt Injection Defense Architectures in 2026
Prompt injection remains the LLM01 entry on the OWASP LLM Top 10 for a reason. A pragmatic look at the defense architectures that hold up in production this year.
Benchmark Contamination Concerns In Security Evals
When the test set is in the training set, the benchmark is broken. Security eval contamination is widespread and the mitigations are specific.