AI Security, engineered

Live compliance timeline for Regulation 2024/1689, maintained from the Official Journal. Vertical enforcement timeline with status badges, client-side countdowns, and a 'You are here' marker — built as a CISO-grade operational reference, not a law-firm PDF. Backed by the eu-ai-act-blueprint repo (79 controls mapped to specific articles).

A reference implementation of a secure-by-design AI agent with MCP tool integration. Every architectural decision is mapped to specific OWASP, NIST, or CSA controls. Defense-in-depth agent - Input guard, tool authorizer, output filter. Hardened MCP server - Path canonicalization, no shell=True, rate limiting. Validation suite - Threat model + manual red-team test cases

A single-file, three-layer automated red-team pipeline for auditing LLMs and MCP tool servers. Runs entirely locally against Ollama. Point it at your own MCP server and the orchestrator throws four industry-standard attack frameworks at it.