Asyraf

Security professional by day, builder by night. Based in Singapore — writing about AI risk, enterprise governance, and shipping things in public.

AboutProjectsBlogLogs

Latest posts

Governing AI Agents: When the User Isn't a Person Anymore

6/8/2026

Agentic AI breaks the assumption that every action traces back to a human. Here's a baseline for giving agents identity, scope, and accountability.

The Lethal Trifecta: Setting Secure AI Baselines for Organisations

9/1/2025

Simon Willison’s ‘lethal trifecta’ and how to turn it into an enterprise baseline.

My First Blog Post

8/24/2025

Launching asrf.blog and sharing my first thoughts.