Technical risk library

Practical security risk mappings for software teams building AI, agentic, browser, and web application systems.

MCP Security

Tool boundaries, prompt injection sinks, SSRF, and manifests.

Browser Extensions

Permissions, DOM injection, CSP, message passing, and storage.

AI Agents

Capability, safety, jailbreak resistance, and reproducibility.

LLM Apps

OWASP LLM Top 10 mapped to practical design controls.

Software Supply Chain

Secrets, lockfiles, CI permissions, SBOM, and dependencies.

Vibe-Coded Apps

Common AI-generated app risks and safer implementation patterns.

Global Market Scope

EU-incorporated teams selling globally: US, UK, Canada, Brazil, Australia, India, Singapore, Japan, China, Korea, New Zealand, South Africa, and Mexico triggers.

Builder Cyber Regulation Map

Fast product triage across CRA, DSA, Data Act, PSTI, FTC, and sector rules.