AHMEDABAD, INDIA / DUBLIN, CALIFORNIA — May 21, 2026 — TechD Cybersecurity Limited (NSE SME: TECHD), the CERT-In empanelled, ISO/IEC 27001:2022 certified MSSP serving 500+ enterprise clients across BFSI, manufacturing, aviation, healthcare and government, today announced an exclusive strategic collaboration with Safeguard.sh Inc., the Dublin, California–headquartered AI-native software supply chain security platform. Safeguard's Enterprise SSCM platform becomes the core engine inside Provenance AI — one of seven flagship modules of TechD's unified TECHD ONE platform — and is delivered exclusively across India and the Middle East. The arrangement is disclosed in the NSE filing dated 20 May 2026.
The collaboration arrives as AI coding agents — Cursor, Claude Code, GitHub Copilot, Cline, Replit — author the majority of production code shipped by global enterprises, turning the software supply chain into the single largest unmanaged attack surface in the world. In just the last ten days, attackers have weaponised a poisoned VS Code extension, hijacked the actions-cool/issues-helper GitHub Action, spread the "Mini Shai-Hulud" worm (CVE-2026-45321) through 42 TanStack packages, and exfiltrated Grafana Labs' private source-code base. 93% of organisations suffered at least one supply-chain attack in 2026, with cumulative damages of USD 80.6 billion.
What Provenance AI delivers
Provenance AI, powered by Safeguard, is a single AI-driven control plane for every line of code entering production. It delivers SAST, SCA, continuous CycloneDX / SPDX SBOMs, 10M+ pre-vetted zero-CVE components, TPRM, MCP-server AI-agent governance, and — most critically — zero-day discovery and self-healing remediation in under one hour. Every detection, prioritisation and fix is authored by three indigenous, purpose-built sovereign models trained exclusively on security data:
- Griffin — discovery & auto-fix. Walks the dependency graph 100 layers deep, performs reachability and taint analysis, and autonomously authors fix PRs. Five variants from Griffin Lite (8B) to Griffin Zero (671B-MoE).
- Eagle — threat reasoning. 13B model on EPSS, KEV, exploit databases and live attack telemetry. Cuts false positives ~80%, accelerates remediation from 45 days to 3.
- Lion — governance & guardrails. 1B model that runs alongside every AI coding agent, enforcing capability scoping, egress allowlists, JIT secret brokering and signed audit trails.
To date the Safeguard engine has coordinated-disclosed 10,000+ zero-days, auto-merged 5M+ remediation PRs, and completed 1B+ scans — with zero material breaches across the named customer base in the last 18 months.
Leadership commentary
"India and the Middle East are entering the most consequential phase of their digital transformation — at a moment when AI is writing more code than humans, and supply chain attacks are compounding faster than any defensive control can absorb. Legacy SCA tools, periodic VAPT cycles and human-only triage workflows cannot keep up. With Safeguard.sh joining hands with TechD under our Provenance AI module, we are bringing the world's most advanced, AI-native, sovereign-model-driven supply chain security platform to Indian and Middle Eastern enterprises, exclusively, under a single accountable Indian regulated entity."
— Sunny Vaghela, Founder, MD & CEO, TechD Cybersecurity Limited
"The software supply chain cannot be defended by general-purpose AI or alert-only scanners — it needs AI-native, sovereign, purpose-built models that discover, prioritise, fix and govern, autonomously. Griffin, Eagle and Lion are those models. Together with TechD's regulatory credibility and 24×7 SOC, Provenance AI on TECHD ONE will give every enterprise in these markets the same standard of supply chain defence top-tier US banks and hyperscalers already rely on."
— Hritik Kumar Sharma, Founder & CEO, Safeguard.sh Inc.
Exclusivity and regional scope
TechD is the exclusive delivery, integration, support and managed-services partner for the Safeguard platform across India (all SEBI-, RBI-, IRDAI- and CERT-In-regulated entities) and the Middle East (GCC — UAE, Saudi Arabia, Qatar, Bahrain, Kuwait, Oman — and the broader MENA region). All deployment, sovereign hosting and L1–L3 incident response run through TechD's Global SOC in Ahmedabad and its GIFT City and Cyber Valley facilities. Provenance AI is mapped against SEBI CSCRF, RBI frameworks (UCBs / NBFCs / PSBs), CERT-In, IRDAI, MeitY, Saudi NCA ECC-2 and UAE TDRA IAS.
Disclosure & links
NSE disclosure (20 May 2026): download PDF · view on nseindia.com. Partner sites: techdefence.ai/platform/provenance-ai, techdefencelabs.com, safeguard.sh.
About the partners
TechD Cybersecurity Limited (NSE SME: TECHD), formerly Techdefence Labs, is a CERT-In empanelled, ISO/IEC 27001:2022 certified MSSP headquartered in Ahmedabad. TechD serves 500+ enterprise customers and listed on NSE SME on 22 September 2025 (IPO oversubscribed 718×).
Safeguard.sh Inc. is the Dublin, California–headquartered AI-native enterprise software supply chain security platform — ".sh" stands for Self-Healing. FedRAMP HIGH-ready, IL7-compliant, SOC 2 Type II ready.
Forward-looking statements: This release contains forward-looking statements regarding TechD Cybersecurity Limited and Safeguard.sh Inc. Actual outcomes may differ materially. Investors and readers are advised to refer to filings made with the National Stock Exchange of India and the U.S. Securities and Exchange Commission, as applicable.