Humanbound website
Blog

Blog

AI security insights, research, and product updates from the Humanbound team.

Infographic titled 'The Humanbound Firewall: A Multi-Tier Defense for AI Agents' on a dark chalkboard-style background with white and orange text. The layout is divided into five sections. Top-left, 'Why Single-Layer Guardrails Fail' highlights three problems: The Context Gap, Multi-turn Blindness, and The Novelty Lag, each with hand-drawn icons. Below it, 'The 4-Tier Defensive Stack' shows a layered pyramid diagram with four tiers: Tier 0 (Sanitization), Tier 1 (Generic Attack Detection using ensemble detectors like DeBERTa), Tier 2 (Domain-Specific Classifiers with normal traffic and adversarial pattern models plus a streaming LLM), and Tier 3 (The LLM Judge). Arrows show data flowing upward through the tiers. Top-right, 'The Continuous Test-and-Defend Loop' illustrates a cycle where the humanbound CLI/SDK engine runs adversarial tests producing transcripts, which become labeled training data. Below it, 'The Feedback Loop' shows how that data refreshes the Tier 2 classifier inside humanbound-firewall, which protects the live agent in production. Bottom-right, 'Open Source vs. Managed Platform' contrasts the Apache-2.0 licensed open-source firewall (offering transparency and auditability) with the managed platform for CISOs (providing continuous testing, posture scoring, compliance evidence, and cross-deployment intelligence). A NotebookLM logo appears in the bottom-right corner.
AI SecurityMay 11, 2026

Why we open-sourced humanbound-firewall

We released humanbound-firewall under Apache-2.0. A multi-tier runtime defense for AI agents, with each layer inspectable, escalating on uncertainty, and trainable on your own adversarial test data.

DG
Demetris Gerogiannis
Infographic titled "The Great AI Security Divide: AI4Sec vs. Sec4AI" comparing two distinct AI security categories across primary targets, buyers, threat models, outputs, and key vendors, with a jagged orange lightning crack down the middle separating the two worlds. Includes the Mythos example, three vendor qualification questions, and a "Budget vs. Product" future outlook.
AI SecurityApr 27, 2026

AI Security Means Two Different Things. Mythos Just Made That Visible.

AI security maps to two different markets: AI for security (AI4Sec) and security for AI (Sec4AI). The Claude Mythos Preview made the distinction unmissable. Here is how to tell which one you are actually buying.

KS
Kostas Siabanis
Diagram showing moderation and policy reasoning as two layers of LLM safety
AI SecurityApr 7, 2026

Beyond Moderation: Why LLM Systems Need a Policy Layer

Moderation APIs catch harm and injection attempts but fail to enforce domain-specific policy. A cross-domain evaluation shows why production LLM systems need both moderation and policy reasoning layers.

SB
Spyros Briakos
Abstract representation of AI agents evolving over time while security tests remain static
AI SecurityMar 17, 2026

Your Agent Passed Its Security Test. That Was Three Weeks Ago.

The security industry is applying shift-left to AI agents. But AI agents aren't deterministic. The gap between testing on deploy and staying secure in production is where risk accumulates.

KS
Kostas Siabanis
Abstract illustration of AI agents navigating security barriers and test harnesses
AI SecurityMar 11, 2026

The Enforcement Illusion: Why AI Agent Security Starts with Testing, Not Walls

The AI agent security market is fragmenting into enforcement, identity, and control plane vendors. But the incident data tells a different story: most agents ship without any adversarial testing at all.

KS
Kostas Siabanis
Diagram showing AI agent security lifecycle from testing to enforcement and monitoring
AI SecurityMar 10, 2026

Why Your AI Agent's Biggest Vulnerability Isn't a Missing Firewall

Agent security incidents keep sharing one root cause: agents deployed without adversarial testing. Enforcement is needed, but it is phase 3 of a lifecycle most organizations are entering at phase 1.

DG
Demetris Gerogiannis
Security engineer working in a terminal with AI-assisted tools integrated into their workflow
AI SecurityFeb 26, 2026

You're Still Alt-Tabbing to a Security Tool

AI agent security won't be adopted through better dashboards. It'll be adopted when it disappears into existing workflows. Embed adversarial testing into your terminal via MCP - security becomes a conversation, not a context switch.

DG
Demetris Gerogiannis
Abstract visualization of AI systems integrated into an enterprise security perimeter
AI SecurityFeb 25, 2026

Securing AI at Enterprise Scale — A Continuous Assurance Framework for the GenAI Era

Why point-in-time audits fail, and what a mature AI security programme actually looks like. A continuous assurance framework addressing visibility, testing, and operations gaps in enterprise GenAI deployments.

DG
Demetris Gerogiannis
Abstract illustration of autonomous AI agents interacting with complex systems and security boundaries
AI SecurityFeb 23, 2026

Claude Code Security Found the Bugs. The Agents Are Next.

Claude Code Security didn’t kill security tooling—but it did signal that frontier AI labs are now security providers, and that our current models don’t cover the behavioral, contextual, and systemic risks of autonomous agents. This is where security needs to go next.

KS
Kostas Siabanis
Abstract visualization of AI agents operating outside a security dashboard
AI SecurityFeb 21, 2026

Shadow AI: The Gap Your CISO Dashboard Doesn’t Show

Your CISO dashboard tracks vulnerabilities across infrastructure, apps, and cloud—but may miss the fastest-growing risk surface: Shadow AI. See how it shows up, why legacy tools miss it, and how Humanbound reveals AI use in a governed, continuously monitored registry.

KS
Kostas Siabanis