Login Get a Demo
01 Resources

jpollock

Research, field notes and product news from the team building the end-to-end AI trust platform.

What Is the AI Supply Chain and Why Is It So Easy to Compromise?
Blog

What Is the AI Supply Chain and Why Is It So Easy to Compromise?

Modern AI is assembled from datasets, pretrained models, open-source libraries, and third-party APIs, making it powerful but fragile. When one component is…

March 5, 2026
The Art of the AI Con: Adversarial ML – The Attack You Don’t See Coming
Blog

The Art of the AI Con: Adversarial ML – The Attack You Don’t See Coming

Adversarial machine learning doesn't break AI systems—it convinces them to confidently do the wrong thing while everything appears normal, evading traditional security…

February 23, 2026
Why Traditional Security Fails for AI Systems
Blog

Why Traditional Security Fails for AI Systems

AI systems don't behave like traditional software—they are shaped by data, respond dynamically to inputs, and can be manipulated at runtime through…

February 10, 2026
Cranium AI Issues Critical Remediation for Vulnerability to Protect Leading AI Coding Assistants
Press

Cranium AI Issues Critical Remediation for Vulnerability to Protect Leading AI Coding Assistants

Cranium AI announced the discovery of a high-to-critical severity exploitation technique that lets attackers hijack agentic AI coding assistants and achieve persistent…

February 4, 2026
The Enterprise Guide to Navigating AI Security Threats
Blog

The Enterprise Guide to Navigating AI Security Threats

AI and ML systems introduce entirely new security failure modes that traditional AppSec and cloud tools were never built to handle. Here's…

January 26, 2026
Why F1 Score Alone Isn’t Enough: Rethinking AI Model Evaluation in the Age of Generative AI
Blog

Why F1 Score Alone Isn’t Enough: Rethinking AI Model Evaluation in the Age of Generative AI

The F1 score has long been the default for measuring AI models, but it falls short for generative AI and autonomous agents.…

January 19, 2026
AI Safety and Security in 2026: The Urgent Need for Enterprise Cybersecurity Governance
Blog

AI Safety and Security in 2026: The Urgent Need for Enterprise Cybersecurity Governance

As AI becomes the bedrock of modern enterprise, the threat landscape grows more sophisticated—making comprehensive AI cybersecurity governance a requirement for survival…

January 12, 2026
Part Two – When AI Writes the Code, Who Fixes the Bugs? What CISOs Should Do Now: A Practical 5-Step Plan
Blog

Part Two – When AI Writes the Code, Who Fixes the Bugs? What CISOs Should Do Now: A Practical 5-Step Plan

AI now writes a massive slice of enterprise codebases. This practical 5-step plan helps CISOs discover, validate, and remediate AI-generated code with…

December 16, 2025
Part One – When AI Writes the Code, Who Fixes the Bugs? Why Agentic Remediation Is the New Control Layer
Blog

Part One – When AI Writes the Code, Who Fixes the Bugs? Why Agentic Remediation Is the New Control Layer

AI now generates 30-50% of enterprise code, yet traditional AppSec still assumes human authors and linear workflows. Agentic remediation flips security from…

December 11, 2025
AI Explainability Scorecard: Part 2 — Measuring Trust in the Age of Intelligent Machines
Blog

AI Explainability Scorecard: Part 2 — Measuring Trust in the Age of Intelligent Machines

If explainability is the foundation of trust, then we need a way to measure it. This second installment introduces the AI Explainability…

December 5, 2025
06 It's time

Get serious about
AI security.

See how Cranium helps your organization accelerate the secure adoption of AI — from your first model to your entire agentic supply chain.