๐Ÿ”AI RiskAtlas
โ† All systems

Model / Package Supply Chain

You download a model or package from a public hub and run it

Architecture introduced 05 Jan 2020

AI apps are built from models and packages downloaded from public hubs. Convenient โ€” but you're running weights and code a stranger uploaded. If it's poisoned or booby-trapped, the danger arrives the moment you load it.

Untrusted supply chainYour infrastructureuploads artefact๐ŸŒPublisher(maybe๐ŸชModel / PackageRegistry๐ŸงฌDownloadedmodel / package๐Ÿ—๏ธYour build /serving stack๐Ÿง Your deployedmodel
InstructionsDataActionsControl / decisionFeedback / logs
๐Ÿ‘† Click any component in the diagram to inspect its risks & defenses

Follow a request ยท step 1 of 3

Someone uploads a model or package to a public hub. Anyone can.

AI RiskAtlas is an educational model of how GenAI & agentic systems work and fail. Architectures and payloads are illustrative and simplified for learning โ€” not operational guidance. Real-world cases are summarised from public reporting.

Sources & further reading โ†’ยทBuilt by Shi Yuan โ†—