The AI artifact is the supply chainAI supply chain securityThe AI artifact is the supply chainSkills, MCP servers, .cursorrules, and agents.md are the new untrusted dependencies. Treat them like npm circa 2018: untrusted by default, scanned on ingest, pinned on use.Jiffy Research Team·Mar 28, 2026·6 min read
