/tags/llm-security/ Recent content in Llm-Security on Napat's Inverse Blog Hugo en-us Thu, 02 Apr 2026 15:30:00 +0700 /2026-04-02-five-owasp-ai-lists-one-practitioner-problem/ Thu, 02 Apr 2026 15:30:00 +0700 /2026-04-02-five-owasp-ai-lists-one-practitioner-problem/ <p>I was in a meeting recently where someone asked a simple question: &ldquo;Which OWASP list should we use for our AI security review?&rdquo;</p> <p>Nobody could answer it. Not because the people in the room were incompetent. The opposite, actually — they&rsquo;d all read the lists, which is precisely why they couldn&rsquo;t answer. There are five of them now. Five OWASP AI security lists. Each one a Top 10, except the one that&rsquo;s a 200-page guide. They overlap, contradict, and occasionally talk past each other. When someone finally pulled up Matt Adams&rsquo; <a href="https://owaspai.matt-adams.co.uk/">OWASP AI Top 10 Comparator</a> — a tool that exists specifically because the proliferation problem is bad enough to need its own website — the room collectively sighed.</p>