Contribute to the OWASP AI Exchange
The OWASP projects are an open source effort, and we enthusiastically welcome all forms of contributions and feedback. If you are interested in AI security, join OWASP Slack and come to #project-ai-community to learn and discuss.
Contribution guidelines
We value every contribution to our project, but it’s important to be aware of certain guidelines:
Avoid Advertising: The OWASP AI projects should not promote commercial tools, companies, or individuals. The focus should be on open-source tools.
Refrain from Unnecessary Self-Promotion: If referencing tools or articles you’re affiliated with, please disclose this relationship in your pull request.
If you’re unsure about anything, feel free to reach out to us with your questions.
Contributing Authors
| Name | Company | Country | Contributions |
|---|---|---|---|
| Rob van der Veer | Software Improvement Group (SIG) | Netherlands | Project founder and lead, content, leadership team |
| Aruneesh Salhotra | SNM Consulting Inc | US | Outreach, management, content, leadership team |
| Behnaz Karimi | Accenture | Germany | Misc. contributions including model obfuscation and explanation, leadership team |
| Adelin Travers | Trail of Bits | ||
| Alan Hau | AIFT (Vulcan) | Singapore | Cultural sensitivity and global comparison |
| Alex Leung | AIFT (Vulcan) | Singapore | Cultural sensitivity and global comparison |
| Alon Tron | Stealth | Israel | Improved supply chain management |
| Angie Qarry | QDeepTech | Austria | several elaborations and references on data science defence mechanisms |
| Annegrit Seyerlein-Klug | TH Brandenburg | Germany | mapping with misc. standards |
| Anthony Glynn | CapitalOne | US | many textual improvements & link to LLM top 10 |
| Chris Ancharski | Global community builder | US | Leadership team during part of 2024 |
| Dan Sorensen | Centil | US | Misc. additions including development security |
| Dennis Charolle | MilliporeSigma | US | Compliance overview and copyright |
| Disesdi Susanna Cox | OTW | US | Federated learning and many more |
| Eoin Wickens | HiddenLayer | Ireland | Additions to development security |
| Feiyang Tang | Software Improvement Group (SIG) | ||
| John Sotiropoulos | Kainos | UK | Liaison to several institutes |
| Manish Garg | VE3 | UK | Runtime model protection |
| Marko Lihter | SplxAI | Croatia | step-by-step guide for organizations, website creation, various textual improvements |
| Niklas Bunzel | Fraunhofer institute | Germany | data science discussion and references around evasion attacks |
| Rocky Heckman | Cyber Dynamo | Australia | Security & privacy risk analysis and ISO/IEC 27562 |
| Rubens Zimbres | Brazil | Adversarial machine learning | |
| Roger Sanz | Universidad Isabel | Spain | |
| Sandy Dunn | Boise State University, AI Cyber Advisors | US | Community management in the initial phase |
| S M Zia Ur Rashid | Paycom | US | AI red teaming and supply chain requirements project, learning and training resources table under references |
| Sean Oesch | Oak Ridge National Laboratory | US | BLUF, Adversarial Training, OOD detection, NISTIR 8269, Guide Usability/Structure |
| Srajan Gupta | Dave | ||
| Steve Francolla | Workforce Tech LLC | ||
| Venkata Sai Kishore Modalavalasa (Sai) | Straiker | US | Incident detection, massive editor work in transfering controls research |
| Wei Wei | IBM | Germany | mapping with ISO/IEC 42001 |
| Yiannis Kanellopoulos and team | Code4thought | Greece | evasion robustness |
| Zoe Braiterman | Mutual Knowledge Systems | US | Many markdown improvements |
