Mobb

Data gathering in process

AI security assistant that automatically generates fixes for application vulnerabilities identified by SAST, DAST, and SCA tools.

HQIL

Est2022

Size11-50

EU AI ActLimited Risk

mobb.ai

Score

35.8 / 100

Evidence

3 items

Developing safety practices - core foundations in place with room for improvement.

Strengths:Technical Safety

Weaknesses:Governance Maturity, Risk Assessment, Regulatory Readiness, External Engagement

Focus Areas

vulnerability remediationcode securitydevsecopsai security tooling

Safety Profile

Security Assessment

Security-relevant indicators for vendor evaluation

Security Posture

TS-01dim: 50

Red Teaming & Pre-deployment Testing

Adversarial testing before deployment

TS-05dim: 50

Robustness & Adversarial Resilience

Resistance to adversarial attacks

RA-01dim: 35

Sector-Specific Risk Assessment

Risk analysis for deployment context

RA-03dim: 35

Dual-Use & Misuse Risk

Dangerous capability awareness

RA-07dim: 35

Incident History & Track Record

Past incidents and response quality

EE-04dim: 28

Vulnerability Disclosure Program

Bug bounty or CVE reporting process

Incident History

Mobb incident records sourced from AIAAIC Repository and public reporting.

Integration: AIAAIC, OECD AI Incidents Monitor

Third-Party Audits

External audit reports, SOC 2 attestations, and ISO certifications verified where published.

Sources: Company filings, registry lookups

CVE & Disclosures

Known vulnerabilities and security advisories from NVD, GitHub Security Advisories, and vendor pages.

Sources: NVD, GHSA, vendor disclosure pages

Dimension Breakdown

Governance Maturitymedium

Published policies, corporate structure, safety mandate, whistleblowing, executive commitment.

Technical Safetymedium

Benchmarks, adversarial robustness, fine-tuning safety, watermarking, model cards, research output.

2 evidence items

TS-01TS-04

Risk Assessmentlow

Dangerous capability evaluations, thresholds, external testing, bug bounty, halt conditions.

1 evidence items

RA-01

Regulatory Readinesslow

ISO 42001, EU AI Act compliance, GPAI obligations, international commitments, incident reporting.

External Engagementmedium

Survey participation, research support, transparency, behavior specs, open-source contributions.

Social Impact & Safety Profile

Emerging

Mobb focuses on vulnerability remediation and code security. Automated vulnerability fixing has social benefit through reducing attack surfaces, but no AI-specific social impact policies have been published.

vulnerability remediationcode security

Need a detailed report for Mobb?

Subscribe to express interest in indicator-level evidence, peer benchmarking, and regulatory gap analysis - or reach out to request a full company overview brief.

Subscribe for Updates Request a Brief

Scoring methodology v0.1 - View full rubric