🛡️ Security / Risk Hub¶
Entry point for systematizing and mitigating risks that surface or expand through AI adoption.
📚 Guide Index¶
- Prompt Injection Attack patterns, defense-in-depth, and verification metrics.
- Source Code Leak Prevention Sensitive data transmission control, masking, and scanning.
- Audit Log Design Traceability and minimal PII masking design.
- Voice Transcription Risks Permission and leakage risks during speech-to-text conversion.
- Input Data Masking Dynamic tokenization and output suppression for PII and secrets.
🧭 Coverage Progress¶
| Domain | Status | Next Action |
|---|---|---|
| Input data leakage | draft | Dynamic policy A/B testing / metrics dashboard |
| Source code transmission | draft | Add scanner PoC |
| Prompt injection | draft | Add attack corpus evaluation |
| Audit / compliance | draft | Log signing / tamper detection |
| Voice / microphone usage | partial | Diagram permission separation model |
🧩 Related¶
- Methodology: ../methodology/index.md
- Practices: ../practices/index.md