Safeguard
Tag

rag

Safeguard articles tagged "rag" — guides, analysis, and best practices for software supply chain and application security.

10 articles

AI Security

Prompt Injection in RAG: Indirect Attacks

A senior engineer's breakdown of indirect prompt injection in RAG pipelines, how real attacks land through retrieved content, and what actually reduces exposure.

Apr 5, 20267 min read
AI Security

RAG Poisoning In The Wild: Trend Watch

Retrieval-augmented generation was the 2024 success story. 2026 is when RAG poisoning moved from research to production incidents.

Mar 3, 20262 min read
AI Security

RAG Pipeline Security Controls in 2026

Retrieval-augmented generation pipelines have become a primary breach vector for LLM products. The controls that contain the risk without breaking the use case.

Feb 26, 20266 min read
AI Security

Retrieval Context Poisoning At Scale

Retrieval context poisoning scales differently than direct prompt injection. The attacker's leverage grows with the RAG ingest surface.

Feb 24, 20262 min read
AI Security

RAG Pipeline Supply Chain Attacks: Vector DBs and More

RAG pipelines have six or seven supply chain surfaces, and most teams are only watching one. Here is how the attacks actually look in production.

Feb 3, 20267 min read
AI Security

Security considerations for deploying and querying vector...

Vector databases now hold copies of your most sensitive data with weaker controls than the systems they came from. Here's what to fix before your next RAG deployment.

Dec 7, 20257 min read
AI Security

Prompt Injection Detection in Retrieval Systems

Indirect prompt injection arrives through your retrieval corpus, not your chat box. We cover the detection strategies that survive when attackers write your RAG content.

Dec 2, 20255 min read
AI Security

RAG Poisoning: Defenses That Work

Retrieval-augmented generation is the most common LLM deployment pattern in the enterprise and the most commonly poisoned. A senior security engineer's playbook for defences that hold up in production.

Oct 20, 20257 min read
AI Security

Embedding Model Supply Chain Risks

Embedding models are the silent dependency under every RAG system. We cover poisoning, deprecation, and provenance gaps that break retrieval in production.

Oct 18, 20255 min read
AI Security

Vector DB Security Considerations

Vector stores hold derivatives of your most sensitive text. We cover the access, isolation, and integrity controls production deployments of Pinecone and Weaviate need.

Sep 10, 20255 min read
rag — Safeguard Blog