The Strategy Behind Open-Sourcing Shield
Free developer tools as a wedge into enterprise security is a known pattern. Here is why APERION ran it on purpose, and what we expect it to do.
Workflow Platforms Consolidate While Intelligence Community Names Runtime Controls
Microsoft Agent 365, the Five Eyes joint advisory, ServiceNow's AI Control Tower expansion, and the Zscaler-Symmetry acquisition described two distinct supervisory layers.
An LLM Agent Composed a Four-Pivot Intrusion in Real Time
Sysdig documented its first agent-driven intrusion: a reasoning model, not a pre-built playbook, improvised the path from a Marimo CVE to a database dump.
The CISO's Guide to Runtime Governance for AI Agents
If you run security at a regulated enterprise, you already have AI agents in production. You may not
Agent of an Agent
When an agent spawns another agent, the authority chain gets longer and the audit trail gets thinner. The runtime layer is the only place that can prove what actually happened at the end of the chain.
The Trust Fabric: A four-layer architecture for governing AI agents
The Trust Fabric, a four-layer architecture for governing AI agents
The 51-Point Gap: Why Enterprise AI Security Doesn't Match Adoption
Fifty-five percent of enterprises run agentic AI. Four percent are confident in their security posture. The 51-point gap is the runtime governance market, and the reasons it exists explain why workflow and identity governance alone do not close it.
Six Intelligence Agencies Just Published the Runtime Governance Spec
NSA, CISA, ASD's ACSC, Canadian Cyber Centre, NCSC-NZ, NCSC-UK. Thirty pages. The recommended controls map directly to the runtime plane that workflow platforms do not address.
Why We Open-Sourced Shield
Agents in Cursor and Claude Code run tool calls you never see in a PR. DROP DATABASE in a generated migration. rm -rf in a cleanup script. Shield blocks the destructive operations before they execute, and we open-sourced it under Apache 2.0.
Runtime Plane vs Workflow Plane: The New AI Governance Split
Microsoft and ServiceNow both claimed the workflow plane in five days. The runtime plane is still open. Here is why that matters for enterprise AI procurement.
Two Weeks, Three Deals: The Agent Control Plane Is Being Assembled
ServiceNow Armis. Palo Alto Portkey. Cisco Astrix. In thirteen days the enterprise security incumbents stacked three deals onto the agent-era control plane. Each one occupies a different layer.
The Trust Fabric: Four Layers of Enterprise AI Governance
Workflow agent governance and runtime model governance are different categories with different buyers, different budgets, and different failure modes. The Trust Fabric integrates both.