Safeguard
Tag

Trends

Safeguard articles tagged "Trends" — guides, analysis, and best practices for software supply chain and application security.

49 articles

Industry Analysis

Code Signing Key Theft Trend Watch

Code signing key theft has surged across 2025 and 2026. We trace the recurring incident patterns, the operator tradecraft, and the structural defenses that work.

Mar 11, 20268 min read
AI Security

AI-BOM Becoming Mandatory: Regulatory Trend

AI bills of materials moved from voluntary best practice to regulatory requirement in 2026. Multiple jurisdictions now require disclosure of model, data, and component lineage for high-impact AI systems.

Mar 10, 20267 min read
Regulatory Compliance

FTC Data Broker Rule And Supply Chain Overlap

A senior engineer's view of how FTC data broker rulemaking through 2025 and 2026 intersects with software supply chain expectations for organizations handling personal data.

Mar 9, 20267 min read
Industry Analysis

Ransomware Via Software Supply Chain In 2026

Ransomware operators increasingly enter victims through software supply chain pathways. We analyze the 2026 patterns, the affiliate dynamics, and what defenders should do.

Mar 6, 20267 min read
AI Security

Frontier Model Pricing Pressure: Architectural Response

Frontier model pricing is rising even as cheaper alternatives proliferate. The 2026 architectural response is multi-tier model routing — and the security implications are non-trivial.

Mar 5, 20268 min read
Regulatory Compliance

DORA Financial Sector Supply Chain Controls

A senior engineer's view of how DORA's ICT third-party risk management requirements are reshaping software supply chain controls across European financial services.

Mar 4, 20268 min read
AI Security

RAG Poisoning In The Wild: Trend Watch

Retrieval-augmented generation was the 2024 success story. 2026 is when RAG poisoning moved from research to production incidents.

Mar 3, 20262 min read
Industry Analysis

Nation-State Supply Chain Tradecraft Update

Nation-state supply chain tradecraft has evolved sharply since SolarWinds. We trace the 2025 to 2026 patterns, the operational signatures, and defensive implications.

Mar 1, 20267 min read
AI Security

Open-Source LLM Supply Chain Incidents 2026

Open-source LLM ecosystems hit a turning point in 2026 as supply chain incidents — backdoored fine-tunes, compromised weights, malicious adapter packages — moved from rare to recurring.

Feb 28, 20268 min read
Regulatory Compliance

Australia Essential Eight 2026: Supply Chain

A senior engineer's view of how Australia's Essential Eight evolved through 2025 and 2026 to incorporate software supply chain expectations alongside the original mitigations.

Feb 27, 20268 min read
AI Security

The Eval Culture Shift in AI Security

Two years ago, AI vendors shipped without evals. In 2026, the posture has shifted. Customers expect benchmarks. Vendors without them lose deals.

Feb 23, 20262 min read
AI Security

EU AI Act Enforcement: Year One Review

The first enforcement window under the EU AI Act has closed. The actual pattern of enforcement looks different from the one vendors and advocacy groups predicted.

Feb 15, 20267 min read
Trends (Page 3) — Safeguard Blog