238 Photos and videos
Anthropic has validated what we've been working on for 2 years with their Zero Trust eBook for AI Agents. @ThirdKeyAI and the OpenAgentTrustStack.org even fill in the gaps.
1
1
1
30
Google announced that all Android app developers must register centrally, pay a fee, and submit government ID, or their apps will be blocked on every device. over 67 organizations oppose this. keepandroidopen.org @AlteredDeal #KeepAndroidOpen
39
VectorSmuggle is on HNS. Steganographic exfiltration via vector embeddings, plus a cryptographic defense (VectorPin).
helpnetsecurity.com/2026/05/…
1
1
37
Small-angle orthogonal rotation hides arbitrary payload in embeddings, undetected by off-the-shelf statistical defenses across every model-corpus pair we tested.
arXiv: arxiv.org/abs/2605.13764
1
1
22
Added a visual explainer for VectorSmuggle: Steganographic exfiltration in embedding stores
vectorsmuggle.org
1
35
I published a new security preprint:
VectorSmuggle: Steganographic Exfiltration in Embedding Stores and a Cryptographic Provenance Defense
The paper looks at an integrity gap in RAG infrastructure: embeddings are usually treated as opaque numerical artifacts, but vector stores generally lack native/default controls for embedding integrity or provenance.
The finding is nuanced: simple anomaly detectors catch many crude perturbations, but small-angle orthogonal rotation exposes a harder class of embedding tampering. Statistical detection helps, but it should not be the load-bearing control.
I propose VectorPin: a minimal cryptographic provenance protocol that signs a canonical commitment over the source, model, and vector bytes. If the vector is modified after pinning, verification fails.
Paper:
doi.org/10.5281/zenodo.20058…
vectorpin.org
1
2
2
68
Codebase with Jupyter demos:
github.com/jaschadub/VectorS…
1
16
New paper on how Symbiont uses the ORGA loop to secure agents.
"Typestate-Enforced Agent Loops: Making Policy Gates Unskippable at Compile Time"
doi.org/10.5281/zenodo.19746…
1
1
1
36
AI agents are getting more powerful.
The trust layer around them is not.
Today, too much agent safety still depends on prompts, wrappers, and best-effort guardrails. That is not enough for systems that can actually take action.
Introducing OATS: the Open Agent Trust Stack.
OATS is an open specification for zero-trust AI agent execution built around tool contracts, identity, policy, and auditability.
It is also grounded in real implementation work. Symbiont has been applying these ideas in practice over the past year.
The goal: make safe behavior enforceable by design, not optional at runtime.
openagenttruststack.org
#AI #AISecurity #AgenticAI #OpenSource
1
1
1
54
Symbiont is a full implementation of OATS under Apache 2.0 license:
github.com/ThirdKeyAI/Symbio…
22
Two AI agent security papers dropped the same day.
OX Security: architectural MCP flaws across every Anthropic SDK. 9 of 11 registries poisoned. Anthropic declined the fix.
Comment and Control: PR titles hijack Claude Code, Gemini CLI, and Copilot. GitHub's three defenses all bypassed.
One architectural flaw stated by the researcher: untrusted data flows into an agent that holds production secrets and unrestricted tool access in the same runtime.
That's what we've been building Symbiont for. SchemaPin and AgentPin for supply chain trust. ORGA loop and ToolClad for runtime authority. Allow-list by construction, not deny-list after the fact.
149
Using the power of Rust to enforce Gate phase for our ORGA (Observe, Reason, Gate, Act) loop outside of LLM influence.
research.thirdkey.ai/blog/or…
62
🚨 MISSING: One unsecured AI agent last seen running wild at #SCALE23x with root access and zero identity verification.
No audit trail. No sandboxing. No cryptographic identity. Armed with unverified MCP connections.
If spotted, report to symbiont.dev
#AISecurity
2
4
59
Been thinking a lot about my younger years doing malware research and how that applied to AI Agents.
jascha.me/blog/agentic-ai-do…
4
43
Zero-Trust agents for those who want security baked in, not added on...
github.com/ThirdKeyAI/Symbio…
5
60
Check out my latest article: Securing the AI Agent Ecosystem with SchemaPin
linkedin.com/pulse/securing-… via @LinkedIn
2
104