This project is offered as a prospective contribution to the Coalition for Secure AI (CoSAI) under OASIS Open. Names and marks belong to their respective owners; CoSAI endorsement is not implied.
v1 · Production-ready wizards
Security posture
AI Security Controls Assessment
CoSAI AI SRF five-layer walkthrough (AI Business & Usage · AI Information ·
AI Application · AI Platform · AI Model Provider) with OWASP LLM Top 10 coverage,
live scoring, priority-gap list, and PDF export.
wizards/security-controls/
PDF export
CSA AICM aligned
Controls Assessment (AICM variant)
Same five-layer engine, re-weighted against the CSA AI Controls Matrix v1.0.3
with an added EU AI Act risk-tier control. Useful for teams already mapped to
AICM domains.
wizards/controls-assessment/
PDF export
v1 · Governance & discovery
v1 · Regulation discovery
v1.1 · Reference explorers
Reference
Layer Integration Matrix
Cross-cut view of who owns which security domain across business, information,
application, infrastructure, and supply-chain layers — plus a tab that explains
what the CoSAI SRF clarifies at each layer (V0.7).
wizards/layer-matrix/
Matrix · SRF clarity
Scenario
CoSAI SRF Stress Test
Walk a real AI incident through the five-layer Shared Responsibility Framework
and see where accountability holds and where it breaks down.
wizards/srf-stress/
Scenarios · Layers