Tag
#supply-chain
3 posts tagged supply-chain.
- news
AI Sec Weekly: Friday, May 22, 2026
This week's digest: SSRF through agent tool-use, the model supply-chain class and why safetensors matters, and model extraction as a business risk.
- news
The LiteLLM SQL Injection (CVE-2026-42208) and Why AI Gateways Are Crown Jewels
A pre-auth SQL injection in the LiteLLM proxy landed in CISA's KEV catalog and was exploited within roughly 36 hours of disclosure.
- news
The OWASP LLM Top 10 (2025) Changed More Than the Numbering
The 2025 revision of the OWASP Top 10 for LLM Applications added system-prompt leakage and vector/embedding weaknesses, and reframed the supply-chain