Red-Teaming

The threat surface for large language models has expanded beyond what most security teams anticipated three years ago. What began as a concern about chatbot misuse has evolved into a full-spectrum attack discipline targeting autonomous AI agents that browse the web, execute code, manage files, and call external APIs on behalf of users. This guide consolidates the current state of LLM red teaming as of 2026, covering the attack categories, specialized tooling, and operational processes that security teams need to protect AI-powered systems in production. ...

OpenAI acquiring PromptFoo is not a talent grab — it is a strategic acknowledgment that AI security testing is no longer optional infrastructure. With 93% of organizations now shipping AI-generated code and only 12% applying equivalent security standards, the attack surface is enormous and growing. PromptFoo was the most mature open-source tool purpose-built for LLM red-teaming, and OpenAI buying it means the company is betting that security evaluation needs to be a first-class part of the developer workflow, not an afterthought bolted on by a third-party CLI. ...