OWASP — Open Worldwide Application Security Project
OWASP (Open Worldwide Application Security Project) is the leading open-source, community-driven security organization. In AI security, OWASP has become the de facto reference taxonomy producer — having published more substantive AI security content in Q1 2026 than any other framework organization.
AI Security Role
OWASP publishes awareness frameworks and risk taxonomies rather than enforceable compliance standards. Its strength is community development (100+ experts for the ASI Top 10), vendor adoption, and the speed with which it can codify emerging threat patterns.
Q1 2026 Activity
OWASP had the most productive AI security quarter of any framework organization:
- OWASP Top 10 for Agentic Applications (ASI Top 10) — published December 9, 2025 at the Agentic AI Security Summit, London; adopted by Microsoft, Palo Alto Networks, Auth0, Gravitee in Q1 2026
- AIVSS v0.8 (March 19, 2026) — first AI-specific vulnerability scoring system extending CVSS 4.0
- Practical Guide for Secure MCP Server Development (February 16, 2026)
- GenAI Security Project announcement at RSAC 2026 (March 19) — updated Landscape Guide, GenAI Data Security Risks report, Agentic AI Security Solutions Landscape
- OWASP AIBOM Generator — CycloneDX-format AI bills of materials for Hugging Face-hosted models
GenAI Security Project now has 25,000+ members with new sponsors including F5, Fujitsu, and Apiiro.
Notable Sponsor M&A Activity (Q1 2026)
Five OWASP sponsor alumni were acquired by major security vendors:
- Pangea → CrowdStrike
- Lakera → Check Point
- Prompt Security → SentinelOne
- Calypso AI → F5
- SPLX → Zscaler
AI Security Frameworks Published
| Framework | Status |
|---|---|
| LLM Top 10 2025 | Active; unchanged Q1 2026 |
| Agentic Applications Top 10 | Active; published Dec 2025 |
| ML Security Top 10 v0.3 | Dormant |
| AIVSS v0.8 | Active; community review |
| AIBOM Generator | Active |
| MCP Security Guide | Active (Feb 2026) |
| AI Exchange | Active |