An Agent's Attack Surface Is Bigger Than You Think A plain LLM application has one attack...
An Agent's Attack Surface Is Bigger Than You Think
A plain LLM application has one attack surface: user input → LLM output.
Add tools to the mix, and it triples:
User input ──→ [LLM] ──→ Tool call args ──→ [Tool exec] ──→ Tool result ──→ [LLM] ──→ Output
↑ ↑ ↑
A few months ago I watched someone demo an internal AI assistant during a meeting that had already...
If you are a user of LLM systems that use tools (you can call them “AI agents” if you like) it is critically important that you…
This morning, while working on an LLM integration in my own financial analysis tool, I encountered an...
Tools Are the Agent's Hands and Eyes The previous three articles covered the thinking...
A Blog post by ServiceNow-AI on Hugging Face
If you think the security risk of AI coding agents (Claude Code, Cursor, Gemini CLI) is "the model...
