Cisco Open-Sources Foundry Security Spec for Agentic AI Evaluation

Summary

Cisco's Advanced Security Initiatives Group has released Foundry, an open specification for evaluating agentic AI security. Rather than open-sourcing proprietary code tightly coupled to Cisco's infrastructure, the company distilled years of production experience into a portable, organization-neutral specification designed for any deployment stack. The specification includes eight core agent roles, five extension roles, 11 inviolable principles, and approximately 130 functional requirements—each with inline rationale explaining why it exists. The approach emphasizes flexibility, leaving infrastructure-specific decisions as explicit open questions for organizations to answer based on their own environment. At the core of Foundry's design is a 'detection-to-prevention flywheel' that combines systematic rule-based detection with exploratory agent-driven hunting. When exploration identifies gaps in detection, those findings are generalized into new or revised rules that feed into the CodeGuard corpus—which Cisco previously open-sourced to the Coalition for Secure AI (CoSAI). This creates a continuous improvement loop: the same bugs detected during evaluation become prevention rules in developers' coding assistants, embedding knowledge from each evaluation into the entire organization before the next assessment cycle begins.

• The release integrates with CodeGuard, an OASIS open standard Cisco previously donated to the Coalition for Secure AI, creating a unified ecosystem for detection and prevention