Trends
Safeguard articles tagged "Trends" — guides, analysis, and best practices for software supply chain and application security.
49 articles
AI-BOM Adoption: State of the Art in 2026
The AI Bill of Materials went from concept paper to procurement requirement in under two years. Here is what the current state of the art actually looks like.
Agent Security: Enterprise Adoption Patterns
Enterprise agent deployments have moved past pilot phase. The security patterns that have survived contact with production look different from the ones the industry was selling a year ago.
MCP Ecosystem Maturation: Where It's Going
The Model Context Protocol went from a single-vendor proposal to a multi-implementation standard in under eighteen months. The security implications are still being worked out in public.
5 Software Supply Chain Security Trends Defining 2026
From AI-generated code risks to regulatory enforcement, these are the supply chain security trends that will shape the year ahead.
Training Data Provenance: The Regulatory Wave
Regulators across three continents are converging on a single demand: show where your training data came from. The engineering implications are larger than most labs have admitted.
Prompt Injection At Scale: 2026 Trend Review
Prompt injection has evolved from demonstration exploits into a category of attack that runs continuously against production AI systems. Here is what changed in 2026.
10 Predictions for Software Supply Chain Security in 2026
From AI-generated SBOMs to regulatory enforcement and the death of CVSS-only triage, here is what the software security landscape will look like in 2026.
The 2025 Software Supply Chain Security Report: Summary
The 2025 annual SSCS report lands into a changed landscape. Key findings, trend lines, and what the numbers actually imply for 2026 planning.
Software Supply Chain Security in 2025: The Year in Review
From the CVE program funding crisis to the rise of AI-targeted supply chain attacks, 2025 reshaped the software security landscape. A comprehensive look at the year's defining events and trends.
Supply Chain Attack Trends: Q3 2025
A data-led look at software supply chain attacks in Q3 2025: npm maintainer phishing, VS Code extension abuse, and a quiet shift toward CI/CD targeting.
The 2024 End-of-Year Vulnerability Disclosure Report
A look back at vulnerability disclosure in 2024: counts, severity distribution, time-to-patch, and the handful of incidents that shifted practice. Numbers, not narrative.
Software Supply Chain Security in 2023: Year in Review
From the MOVEit mass exploitation to AI model risks, 2023 proved that supply chain attacks are accelerating in both sophistication and scale. Here's what we learned.