Tag

#policy

5 posts tagged policy.

digest

AI Security Week: May 18, 2026

A self-propagating npm/PyPI worm sweeps up AI SDKs including Mistral AI and Guardrails AI, two critical RCE classes in the vLLM inference server, and the U.S. CAISI signs frontier-model pre-deployment testing agreements. Verify all specifics against primary sources.
May 17, 2026
digest

AI Security Week: May 13, 2026

A critical pre-auth SQL injection in LiteLLM lands in CISA's KEV catalog, the EU reaches a provisional deal to delay and reshape the AI Act, and Microsoft details how prompt injection becomes RCE in agent frameworks. Verify all specifics against primary sources.
May 12, 2026
digest

AI Security Week: May 10, 2026

Analysis and commentary: training-data poisoning as a durable class, ATLAS as a finding taxonomy, red-teaming through the data channel, and the EU AI Act's staged timeline. Verify all specifics against primary sources.
May 9, 2026
digest

AI Security Week: May 7, 2026

Analysis and commentary: the durable shape of the EU AI Act timeline, MITRE ATLAS as a shared attack vocabulary, the recurring SSRF class in LLM-tool integrations, and why agent tool-use is the surface to watch. Verify any CVE or date against primary sources.
May 6, 2026
digest

AI Security Week: May 6, 2026

Analysis and commentary: AI provider usage-policy direction for security research, multi-modal (image-embedded) prompt injection, AI-security certification trends, and the recurring ML-library CVE classes. Verify any CVE ID or fixed version against NVD/vendor advisories.
May 5, 2026