eu-ai-act
Safeguard articles tagged "eu-ai-act" — guides, analysis, and best practices for software supply chain and application security.
15 articles
What AI Executive Orders Actually Mean for Enterprise Security Teams
The US revoked its AI safety EO in January 2025, but SBOM and evidence obligations under EO 14028 never went away — and the EU AI Act just got harder deadlines.
AIBOM in 2026: Treating AI Models as a Software Supply Chain
The AI bill of materials is graduating from optional security artifact to procurement requirement. Here is what AIBOM/ML-BOM actually tracks in 2026, how it ties to the EU AI Act, and where it still falls short.
AI governance frameworks: managing risk in AI-built software
AI governance frameworks like NIST AI RMF and the EU AI Act now govern AI-built software. Here's what they require, and where JFrog's artifact-first approach falls short.
An Engineering Guide to AI Bill of Materials (AIBOM)
An AIBOM extends the SBOM to models, datasets, and prompts. What goes in one, how CycloneDX 1.6 encodes it, and how to generate it in CI without a documentation project.
EU AI Act Article 73: Serious Incident Reporting from August 2026
Article 73 of the AI Act requires high-risk AI providers to report serious incidents within 15 days, with shorter clocks of 2 days for critical infrastructure and 10 days for death.
DSPM for AI: navigating data and AI compliance regulations
DSPM for AI closes the gap traditional tools miss: tracking sensitive data through embeddings, fine-tuning, and vector stores to meet EU AI Act and Colorado AI Act requirements.
EU AI Act Enforcement Begins: 2026 Reality Check
A 2026 reality check on EU AI Act enforcement: which obligations are active, what regulators expect, and the technical evidence enterprises must produce.
EU AI Act and ISO 42001: how the two frameworks interact
How the EU AI Act's binding rules and ISO 42001's voluntary AIMS overlap, and how supply-chain evidence closes gaps generic GRC tools can't.
EU AI Act: Software Supply Chain Implications 2026
The EU AI Act's 2026 obligations reshape software supply chain requirements for AI system providers, deployers, and upstream model suppliers across every sector.
EU AI Act Alignment: Griffin AI vs Mythos
EU AI Act enforcement began in 2026. Vendors sold as "AI security tools" are now high-risk systems with documentation obligations. The shape of the documentation matters.
ISO/IEC 42001: AI Management Systems Reach Adoption Critical Mass
ISO/IEC 42001:2023 went from new-standard status to enterprise compliance benchmark in 2025, with major SaaS vendors certifying and the EU AI Act referencing it as a harmonized pathway.
Building an AI governance framework for enterprise risk m...
A practical breakdown of what an AI governance framework needs to contain in 2026 — from NIST's AI RMF to EU AI Act deadlines — and how to build one that scales with engineering velocity.