From AI-Generated Content to Agentic Action: Security and Safety Threats in Generative AI
For AI security researchers and policymakers, the paper highlights that current governance arrangements lack the institutional coordination needed for effective countermeasures against emerging agentic threats.
This paper examines security and safety threats as generative AI systems shift from content generation to executing actions via tool chains and APIs, finding that capability deployment and attack-surface expansion outpace defensive responses across content-level, model-level, and agentic threats.
Generative AI systems are increasingly used not only to produce content but also to retrieve data, invoke tools, and execute actions. This work examines the security and safety implications of that shift across content-level, model-level, and agentic threats. We analyze how attacker access requirements, system autonomy, and the scope of potential harm change as models move from generating artifacts to executing operations through tool chains and external APIs. We then assess technical countermeasures including detection, watermarking, alignment, and emerging agentic safeguards, and show that several depend on forms of institutional coordination that current governance arrangements do not yet provide. Across the cases examined, capability deployment and attack-surface expansion repeatedly outpace defensive responses as systems move from generating content to executing real-world actions.