InfoWorld

Microsoft’s new Agent Governance Toolkit targets top OWASP risks for AI agents

The open-source project maps directly to OWASP’s top 10 agentic AI threats, aiming to curb issues like prompt injection, rogue agents, and tool misuse at runtime. Microsoft has quietly introduced the ...
Dark Reading

OWASP GenAI Security Project Gets Update, New Tools Matrix

The Open Web Application Security Project (OWASP) is updating its look at the risk and defensive landscape of artificial intelligence (AI), reflecting the fast adoption of the technology and the ...
Microsoft

Addressing the OWASP Top 10 Risks in Agentic AI with Microsoft Copilot Studio

Agentic AI is moving fast from pilots to production. That shift changes the security conversation. These systems do not just generate content. They can retrieve sensitive data, invoke tools, and take ...
decrypt

OWASP Releases 2026 Smart Contract Risk List Led by CredShields

Crypto protocols lost hundreds of millions of dollars to smart contract failures in 2025. Now, the OWASP Smart Contract Security Project has released the OWASP Smart Contract Top 10 2026, a forward ...
Morningstar

CredShields Contributes to OWASP's 2026 Smart Contract Security Priorities

SINGAPORE, Feb. 18, 2026 /PRNewswire/ -- The OWASP Smart Contract Security Project has released the OWASP Smart Contract Top 10 2026, a risk prioritization framework developed from structured analysis ...
TechRepublic

OWASP Drops First AI Agent Risk List

These aren't simple chatbots anymore—these AI agents access data and tools and carry out tasks, making them infinitely more capable and dangerous. Image: Envato After months of organizations deploying ...
CPO Magazine

OWASP Top 10 2025: Access Control Issues, Security Misconfigurations, Supply Chain Issues Top App Risk List

The Open Worldwide Application Security Project (OWASP) has updated its Top 10 list of web application risks for the first time since 2021, and has essentially created a “rebooted” version with a ...
SD Times

OWASP Top 10 updated after four years, with many of the same concerns still impacting applications

Value stream management involves people in the organization to examine workflows and other processes to ensure they are deriving the maximum value from their efforts while eliminating waste — of ...
Dark Reading

OWASP Highlights Supply Chain Risks in New Top 10 List

OWASP has updated its list of Top 10 software vulnerabilities to align it better with the current threat landscape and modern development practices. The Nov. 6 release is OWASP's first major Top 10 ...
SecurityWeek

Two New Web Application Risk Categories Added to OWASP Top 10

OWASP has added two new categories to the revised version of its Top 10 list of the most critical risks to web applications. The Open Web Application Security Project (OWASP) has released a revised ...
GitHub

OWASP ASVS MCP Server

A production-ready Model Context Protocol (MCP) server that provides AI assistants with access to the OWASP Application Security Verification Standard (ASVS), enabling intelligent security ...
InfoQ

OWASP Flags Tool Misuse as Critical Threat for Agentic AI

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...