Researchers at Carnegie Mellon University's Software Engineering Institute helped develop FLARE-AI, a new open-source platform that enables users to report AI flaws and coordinate responses across developers, vendors and government agencies. Credit: Carnegie Mellon University

An AI flaw that can be found today in one model could be quietly replicated across dozens of products and services built on the same underlying technology. Until now, the AI community has lacked a formal pathway to report those flaws, alert affected vendors and coordinate a response. Researchers at Carnegie Mellon University's Software Engineering Institute (SEI), alongside collaborators from academia and industry, helped build one. Flaw Reporting for AI (FLARE-AI) is a new open-source platform that lets anyone report an AI vulnerability and route it to developers, vendors and government agencies equipped to act.

Closing the AI security gap

Without a formal reporting structure, many AI flaws and vulnerabilities have likely gone unreported, according to Lauren McIlvenny, technical director of threat analysis at the SEI and an adviser to the FLARE-AI project. When flaws are reported, they are often sent to a single vendor.