[01] / The Certificate Header

Noir Safety Certificate

A formal AI safety assessment designed for release tickets, compliance reviews, SOC2 evidence folders, and production sign-off workflows.

Verification ID NOIR-AUDIT-8829-X
Timestamp & Environment Scanned 2026-05-09 12:45 UTC on Production Endpoint
Target https://example.com/support-bot
Signed Hash sha256: pending

[02] / Compliance Mapping

Regulatory traceability

Technical scanner findings become compliance evidence when every control maps to a named requirement, standard, and release-signoff implication.

PASS

ISO/IEC 42001

Satisfies Requirement 8.3: Treatment of AI Risks through documented risk controls, remediation status, and reviewable evidence.

REVIEW

EU AI Act

Supports transparency and risk-mitigation evidence for high-risk AI systems. Legal review required before production declaration.

PASS

OWASP Top 10 for LLMs

Maps prompt injection, sensitive information disclosure, excessive agency, and output handling findings into security-review language.

[03] / Assessment Summary

Scanner findings converted to assessment evidence

Each control now includes attacker context: the exact simulated exploit shape, observed result, and release implication.

Control Status Risk Evidence

[04] / Remediation Roadmap

Legal handoff checklist for engineering

Failed or review-required controls are translated into action items that can be attached to Jira, release notes, or audit evidence.

    [05] / Required Sign-Off

    Production release authorization

    This certificate is not just a report. It is the release artifact that must be acknowledged before Go-Live.

    Lead Engineer Pending signature Owner must confirm remediation branch, rollback plan, and validation run.
    Compliance Officer Pending signature Officer must confirm evidence retention, exception status, and control mapping.

    [06] / Dependency Features

    From scanner output to mandatory release artifact

    PDF Export

    A tangible paper trail for insurance, vendor reviews, security exceptions, and liability records.

    Scheduled Audits

    Weekly scans catch drift before release. Convert this certificate into a CI/CD gate with Safety as Code so Grade D findings cannot re-enter production unnoticed.

    Signed Hashes

    The canonical report payload produces a tamper-evident hash for audit logs and evidence retention.

    Comparison View

    Safety posture delta turns controls into board-reportable progress instead of scattered engineering notes.

    [07] / Global Status

    Embeddable Noir badge

    The badge becomes a public safety signal only when the latest certificate is Grade B or higher within the last 30 days.

    NOIR SAFETY SEAL Active · Grade B · valid 30 days
    Badge snippet 
    
          
    
        
    
      
    

      
    
        
    Recent audits
    
        
    
          
    
            RECENT AUDITS: https://docs.pinecone.io/ (GRADE D)
            //
            https://github.com/BerriAI/litellm (GRADE A)
            //
            https://docs.langchain.com/ (GRADE B)
            //
            https://docs.anthropic.com/ (GRADE A)
          
    
        
    
      
    

      
    
        
        Run New Scan
        Fix in Playground
        Build CI/CD Gate