Tag

security

10 posts with this tag.

Other tags:All postsacceptable-useaccess-controlagentic-aiai-acceptable-useai-adoption ai-agentsai-apisai-assistantsai-behaviorai-codingai-coding-tools ai-compliance ai-contentai-copyrightai-costai-disclosure

Jun 3, 2026·9 min read

Vetting AI Tools: How to Avoid Fake AI Apps and Malware (7-Step Check, 2026)

Searching for popular AI tools now surfaces fake malware sites and typosquatted packages at the top of results. A 7-step vetting check to confirm an AI tool is the real one before your team installs it.

ai-governance shadow-ai security vendor-risk

May 18, 2026·7 min read

AI Incident Response Plan Template for Small Teams (2026)

Copy-paste AI incident response plan template: 5 phases, role assignments, notification checklist, and timeline. Built for teams without a dedicated security or compliance function.

ai-governance incident-response compliance templates

May 12, 2026·9 min read

TypeScript AI Agent Output Validation: 6 Patterns with Code Templates

Copy-paste TypeScript patterns for AI agent output validation: Zod schema enforcement, PII redaction, content policy filtering, JSON repair, hallucination guardrails, and cost circuit breakers. Working code.

typescript ai-agents security ai-governance

May 10, 2026·14 min read

TypeScript AI Agent Tool Authorization Policy Patterns: 6 Code Templates (2026)

6 TypeScript AI agent authorization patterns with working code: allowlists, scoped tokens, RBAC, rate limits, audit logging, and human-in-the-loop gates. Copy-paste for Express or Next.js.

typescript ai-agentsauthorizationsecurity

Apr 20, 2026·10 min read

Vercel Breach 2026: Supply Chain Risk via Infostealer

A Vercel employee's personal Context AI OAuth grant, compromised by Lumma infostealer (spread via Roblox cheats), led to the April 2026 breach of non-sensitive environment variables. What the attack chain means for teams on third-party platforms.

security vendor-riskbreachsupply-chain

Apr 13, 2026·8 min read

When the Fed and Treasury Call the Banks: AI Cyber Risk Is Now a Systemic Concern

The Fed and Treasury convened major banks over AI-driven systemic cyber risk. What it signals for small financial teams and controls regulators expect.

security financial-servicessystemic-riskgovernance

Apr 9, 2026·9 min read

AI Zero-Days: What Project Glasswing Means for Small Teams

Anthropic's Project Glasswing autonomously found thousands of AI zero-days. Three security posture updates every small team using AI vendor APIs must make now.

security zero-day governancerisk

Apr 5, 2026·8 min read

CEO's AI Tool Approval Checklist: 10 Questions Before You Say Yes

Before approving Cursor, ChatGPT, Claude, or Notion AI, run these 10 questions. Takes 30 minutes and prevents most governance mistakes small teams make.

checklist securityceotools

Mar 30, 2026·9 min read

AI Vendor Due Diligence in 30 Minutes (Questions + Scoring Sheet)

AI vendor due diligence in 30 minutes: 5 pass/fail gate questions, 8 deep questions, a 1-3 scoring sheet, and a copy-paste procurement email. No dedicated security team required.

vendor procurement checklist security

Mar 20, 2026·7 min read

AI Vendor Evaluation Checklist for Small Teams (20-Point)

Checklist to evaluate AI vendors before signing: data handling, training opt-out, DPA availability, security certifications, and exit rights. Under 30 min.

vendor checklist procurement security

Tag