How to implement an AI Software Bill of Materials capturing base models, adapters, training datasets, and dependencies — and use it for supply chain risk and compliance.
How to implement an AI Software Bill of Materials capturing base models, adapters, training datasets, and dependencies — and use it for supply chain risk and compliance.
LLMs with large context windows can be reliably jailbroken by embedding hundreds of fictitious dialogues before the target request. The attack scales with context length.
CVE-2026-31204: an SSRF vulnerability in Ollama allows local-network attackers to read arbitrary files and reach internal services via the model pull endpoint. All versions affected.
Backdoor behaviours introduced into LLMs during fine-tuning can persist through subsequent safety alignment including RLHF and adversarial training, surviving standard red-teaming.
A practical framework for implementing prompt injection detection at the API gateway layer: input sanitisation, context isolation, output filtering, and anomaly detection.