* [Blog](https://www.paloaltonetworks.com.au/blog)
* [Cloud Security](https://www.paloaltonetworks.com.au/blog/cloud-security/)
* [AI Security](https://www.paloaltonetworks.com.au/blog/category/ai-security/)
* AI-SPM Update: 3 New Capa...

# AI-SPM Update: 3 New Capabilities for Model Activity, Agentic AI and Software Supply Chain Risks

[](https://www.facebook.com/sharer/sharer.php?u=https%3A%2F%2Fwww.paloaltonetworks.com.au%2Fblog%2Fcloud-security%2Faispm-capabilities-enhanced-security%2F)  
[](https://twitter.com/share?text=AI-SPM+Update%3A+3+New+Capabilities+for+Model+Activity%2C+Agentic+AI+and+Software+Supply+Chain+Risks&url=https%3A%2F%2Fwww.paloaltonetworks.com.au%2Fblog%2Fcloud-security%2Faispm-capabilities-enhanced-security%2F)  
[](https://www.linkedin.com/shareArticle?mini=true&url=https%3A%2F%2Fwww.paloaltonetworks.com.au%2Fblog%2Fcloud-security%2Faispm-capabilities-enhanced-security%2F&title=AI-SPM+Update%3A+3+New+Capabilities+for+Model+Activity%2C+Agentic+AI+and+Software+Supply+Chain+Risks&summary=&source=)  
[](https://www.paloaltonetworks.com//www.reddit.com/submit?url=https://www.paloaltonetworks.com.au/blog/cloud-security/aispm-capabilities-enhanced-security/&ts=markdown)  
\[\](mailto:?subject=AI-SPM Update: 3 New Capabilities for Model Activity, Agentic AI and Software Supply Chain Risks)  
Link copied  
By [Sharon Farber](https://www.paloaltonetworks.com/blog/author/sharon-farber/?ts=markdown "Posts by Sharon Farber") and [Roni Yaari](https://www.paloaltonetworks.com/blog/author/roni-yaari/?ts=markdown "Posts by Roni Yaari")  
Nov 05, 2025  
5 minutes  
[AI Security](https://www.paloaltonetworks.com/blog/category/ai-security/?ts=markdown)  
[AI Security Posture Management](https://www.paloaltonetworks.com/blog/cloud-security/category/ai-security-posture-management/?ts=markdown)  
[ASPM](https://www.paloaltonetworks.com/blog/cloud-security/category/aspm/?ts=markdown)  
[CIEM](https://www.paloaltonetworks.com/blog/cloud-security/category/ciem/?ts=markdown)  
[DSPM](https://www.paloaltonetworks.com/blog/cloud-security/category/dspm/?ts=markdown)

Artificial intelligence (AI) is still a strategic focus for organizations, and it appears that will remain the case in 2026 and beyond. After an experimentation period, commercial and technical teams are now looking to realize the benefits of AI, which often result in a broad range of models, agents and applications in production.

Today we are announcing three meaningful updates to Cortex^®^ Cloud^TM^[AI Security Posture Management (AI-SPM)](https://www.paloaltonetworks.com/cortex/cloud/ai-security-posture-management), all aimed at helping organizations better manage, secure and govern their AI deployments -- from early development to production at scale.

1. Model Activity Analysis: See Which AI Assets Are Actually Being Used

-----------------------------------------------------------------------

There has been an absolute explosion of AI tools and models in recent years, and most organizations will have evaluated dozens of offerings before settling on a handful that actually run in production. Many of these unused AI assets, however, are still deployed in staging, testing or even production environments. This can expand the attack surface, increase compliance and governance risk, and raise cloud costs.

Cortex Cloud AI-SPM now provides a simple way to track and manage AI model activity as well as to detect inactive models. By analyzing cloud logs without having to install agents, Cortex Cloud can generate key insights, including how often a model has been invoked in the past 30 days and when a model was last active.
![AI-SPM dashboard showing the total number of inactive models](https://www.paloaltonetworks.com/blog/wp-content/uploads/2025/11/word-image-347879-1.jpeg)
Figure 1: AI-SPM dashboard showing the total number of inactive models

Models are now automatically marked as inactive after 30 days of non-usage, and you can use a new filter in the inventory view to quickly identify all inactive models. Business, security and AI development teams can use this view as a basis for further discussion regarding which models are still needed.

[*Learn more about model activity analysis*](https://www.paloaltonetworks.com/blog/cloud-security/cloud-security-inactive-ai-model-risk/).

2. Enhanced Security for Agents: See Agentic AI Risks at a Glance

-----------------------------------------------------------------

Agentic deployments -- where a large language model (LLM) is connected to tools and organizational datastores and can perform tasks autonomously or semi-autonomously -- have proven to be a value multiplier in AI implementations. Agents are a mainstay in today's AI landscape and are being rapidly deployed to perform diverse tasks, including customer service, incident management and application development.

Organizations are only now starting to grapple with the security implications of agentic AI, which can be far-reaching. However, the first step in securing any IT infrastructure is knowing when and where AI agents are present. Until now, no major cloud-native application protection platform ([CNAPP](https://www.paloaltonetworks.com/cyberpedia/what-is-a-cloud-native-application-protection-platform)) has offered a dedicated view of AI agents.

This reality changes with Cortex Cloud AI-SPM's new update, which offers visibility into agent infrastructure and risks, including:

* \*\*Inventory:\*\*dedicated inventory of deployed AI agents
* \*\*Ecosystem:\*\*associated models, cloud resources and other AI agents
* \*\*Data risk:\*\*agents with access to sensitive data
* \*\*Identity and permissions risk:\*\*overprivileged agents as well as users or roles that can use agents to gain effective access to other systems
* \*\*Tools:\*\*tools that each agent can access, enabling further investigation into the permissions and resources connected to each tool

![AI-SPM inventory showing a detailed agent view](https://www.paloaltonetworks.com/blog/wp-content/uploads/2025/11/word-image-347879-2.jpeg)
Figure 2: AI-SPM inventory showing a detailed agent view

Now Security and IT teams can better understand how AI is being used, define surface agentic implementations that might require further consideration, and identify immediate risks such as agents with access to customer data.

3. AI Software Package Analysis: Shift-Left AI-SPM

--------------------------------------------------

As AI becomes deeply embedded in application development, security teams need visibility into not only deployed AI models and agents, but also AI software packages and SDKs that developers use to build these systems. Understanding your AI software supply chain can help you identify vulnerabilities before they reach production.

Cortex Cloud AI-SPM now extends from cloud resources to code and applications, providing comprehensive visibility into AI-related software packages used in development environments. This shift-left approach to AI security helps organizations identify and manage risks early in the development lifecycle.
![AI-SPM showing AI software packages](https://www.paloaltonetworks.com/blog/wp-content/uploads/2025/11/word-image-347879-3.jpeg)
Figure 3: AI-SPM showing AI software packages

Now you can use [Cortex Cloud](https://www.paloaltonetworks.com/cortex/cloud) to better understand your AI bill of materials (AI BOM), including:

* **Visibility into AI applications and components**: See all applications that contain AI components and a full inventory of AI software packages (e.g. Langchain, LLM SDKs) being used in these applications.
* \*\*Business context:\*\*Understand who is building with AI, which building blocks they are using (e.g., dev branch).
* **Risks**: Check each software package for known CVEs and see insights about the popularity and usage of open source packages.

Connecting AI posture insights to application development is part of our platform approach to AI and cloud security -- bringing everything together under one roof, from code to cloud to SOC. Stay tuned for more integrations and automations built on the unified view that Cortex Cloud has across your entire environment.

## How to Get Started

If you're already using Cortex Cloud AI-SPM, you now have access to all our new and existing capabilities. Contact your customer success manager if you require further assistance.

Not using AI-SPM yet? [Request a demo](https://www.paloaltonetworks.com/cortex/cloud/demo) today.

*** ** * ** ***

## Related Blogs

### [AI Security](https://www.paloaltonetworks.com/blog/category/ai-security/?ts=markdown), [AI Security Posture Management](https://www.paloaltonetworks.com/blog/cloud-security/category/ai-security-posture-management/?ts=markdown), [DSPM](https://www.paloaltonetworks.com/blog/cloud-security/category/dspm/?ts=markdown)

[#### Model Context Protocol (MCP): A Security Overview](https://www.paloaltonetworks.com.au/blog/cloud-security/model-context-protocol-mcp-a-security-overview/)

### [AI Security](https://www.paloaltonetworks.com/blog/category/ai-security/?ts=markdown), [AI Security Posture Management](https://www.paloaltonetworks.com/blog/cloud-security/category/ai-security-posture-management/?ts=markdown), [CSPM](https://www.paloaltonetworks.com/blog/cloud-security/category/cspm/?ts=markdown), [DSPM](https://www.paloaltonetworks.com/blog/cloud-security/category/dspm/?ts=markdown)

[#### Deploying Secure LLM and RAG Applications with Amazon Bedrock and Prisma Cloud](https://www.paloaltonetworks.com.au/blog/cloud-security/deploy-secure-llm-rag-applications/)

### [AI Security](https://www.paloaltonetworks.com/blog/cloud-security/category/ai-security/?ts=markdown), [AI-SPM](https://www.paloaltonetworks.com/blog/cloud-security/category/ai-spm/?ts=markdown), [CIEM](https://www.paloaltonetworks.com/blog/cloud-security/category/ciem/?ts=markdown), [Cloud Security](https://www.paloaltonetworks.com/blog/category/cloud-security/?ts=markdown), [DSPM](https://www.paloaltonetworks.com/blog/cloud-security/category/dspm/?ts=markdown), [Identity Security](https://www.paloaltonetworks.com/blog/cloud-security/category/identity-security/?ts=markdown)

[#### Is AI a New Challenge for Cloud Security? Yes and No.](https://www.paloaltonetworks.com.au/blog/cloud-security/ai-security-gap-cloud-models-agents/)

### [AI Security](https://www.paloaltonetworks.com/blog/category/ai-security/?ts=markdown), [AI Security Posture Management](https://www.paloaltonetworks.com/blog/cloud-security/category/ai-security-posture-management/?ts=markdown), [Cloud Security](https://www.paloaltonetworks.com/blog/cloud-security/category/cloud-security/?ts=markdown)

[#### Don't Let Inactive AI Models Linger: Reduce Risk and Cost with Cortex Cloud](https://www.paloaltonetworks.com.au/blog/cloud-security/cloud-security-inactive-ai-model-risk/)

### [AI Security](https://www.paloaltonetworks.com/blog/category/ai-security/?ts=markdown), [Application Security](https://www.paloaltonetworks.com/blog/cloud-security/category/application-security/?ts=markdown), [ASPM](https://www.paloaltonetworks.com/blog/cloud-security/category/aspm/?ts=markdown)

[#### AI's Hidden Security Debt](https://www.paloaltonetworks.com.au/blog/cloud-security/ai-security-debt/)

### [AI Security](https://www.paloaltonetworks.com/blog/category/ai-security/?ts=markdown), [AI Security Posture Management](https://www.paloaltonetworks.com/blog/cloud-security/category/ai-security-posture-management/?ts=markdown)

[#### Implementing AI Security with Cortex Cloud AI-SPM](https://www.paloaltonetworks.com.au/blog/cloud-security/implementing-ai-security-with-cortex-cloud-ai-spm/)

### Subscribe to Cloud Security Blogs!

Sign up to receive must-read articles, Playbooks of the Week, new feature announcements, and more.
![spinner](https://www.paloaltonetworks.com.au/blog/wp-content/themes/panwblog2023/dist/images/ajax-loader.gif) Sign up  
Please enter a valid email.  
By submitting this form, you agree to our [Terms of Use](https://www.paloaltonetworks.com/legal-notices/terms-of-use?ts=markdown) and acknowledge our [Privacy Statement](https://www.paloaltonetworks.com/legal-notices/privacy?ts=markdown). Please look for a confirmation email from us. If you don't receive it in the next 10 minutes, please check your spam folder.  
This site is protected by reCAPTCHA and the Google [Privacy Policy](https://policies.google.com/privacy) and [Terms of Service](https://policies.google.com/terms) apply.  
{#footer} {#footer}

## Products and Services

* [AI-Powered Network Security Platform](https://www.paloaltonetworks.com/network-security?ts=markdown)

* [Secure AI by Design](https://www.paloaltonetworks.com/precision-ai-security/secure-ai-by-design?ts=markdown)

* [Prisma AIRS](https://www.paloaltonetworks.com/prisma/prisma-ai-runtime-security?ts=markdown)

* [AI Access Security](https://www.paloaltonetworks.com/sase/ai-access-security?ts=markdown)

* [Cloud Delivered Security Services](https://www.paloaltonetworks.com/network-security/security-subscriptions?ts=markdown)

* [Advanced Threat Prevention](https://www.paloaltonetworks.com/network-security/advanced-threat-prevention?ts=markdown)

* [Advanced URL Filtering](https://www.paloaltonetworks.com/network-security/advanced-url-filtering?ts=markdown)

* [Advanced WildFire](https://www.paloaltonetworks.com/network-security/advanced-wildfire?ts=markdown)

* [Advanced DNS Security](https://www.paloaltonetworks.com/network-security/advanced-dns-security?ts=markdown)

* [Enterprise Data Loss Prevention](https://www.paloaltonetworks.com/sase/enterprise-data-loss-prevention?ts=markdown)

* [Enterprise IoT Security](https://www.paloaltonetworks.com/network-security/enterprise-device-security?ts=markdown)

* [Medical IoT Security](https://www.paloaltonetworks.com/network-security/medical-device-security?ts=markdown)

* [Industrial OT Security](https://www.paloaltonetworks.com/network-security/medical-device-security?ts=markdown)

* [SaaS Security](https://www.paloaltonetworks.com/sase/saas-security?ts=markdown)

* [Next-Generation Firewalls](https://www.paloaltonetworks.com/network-security/next-generation-firewall?ts=markdown)

* [Hardware Firewalls](https://www.paloaltonetworks.com/network-security/hardware-firewall-innovations?ts=markdown)

* [Software Firewalls](https://www.paloaltonetworks.com/network-security/software-firewalls?ts=markdown)

* [Strata Cloud Manager](https://www.paloaltonetworks.com/network-security/strata-cloud-manager?ts=markdown)

* [SD-WAN for NGFW](https://www.paloaltonetworks.com/network-security/sd-wan-subscription?ts=markdown)

* [PAN-OS](https://www.paloaltonetworks.com/network-security/pan-os?ts=markdown)

* [Panorama](https://www.paloaltonetworks.com/network-security/panorama?ts=markdown)

* [Secure Access Service Edge](https://www.paloaltonetworks.com/sase?ts=markdown)

* [Prisma SASE](https://www.paloaltonetworks.com/sase?ts=markdown)

* [Application Acceleration](https://www.paloaltonetworks.com/sase/app-acceleration?ts=markdown)

* [Autonomous Digital Experience Management](https://www.paloaltonetworks.com/sase/adem?ts=markdown)

* [Enterprise DLP](https://www.paloaltonetworks.com/sase/enterprise-data-loss-prevention?ts=markdown)

* [Prisma Access](https://www.paloaltonetworks.com/sase/access?ts=markdown)

* [Prisma Browser](https://www.paloaltonetworks.com/sase/prisma-browser?ts=markdown)

* [Prisma SD-WAN](https://www.paloaltonetworks.com/sase/sd-wan?ts=markdown)

* [Remote Browser Isolation](https://www.paloaltonetworks.com/sase/remote-browser-isolation?ts=markdown)

* [SaaS Security](https://www.paloaltonetworks.com/sase/saas-security?ts=markdown)

* [AI-Driven Security Operations Platform](https://www.paloaltonetworks.com/cortex?ts=markdown)

* [Cloud Security](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown)

* [Cortex Cloud](https://www.paloaltonetworks.com/cortex/cloud?ts=markdown)

* [Application Security](https://www.paloaltonetworks.com/cortex/cloud/application-security?ts=markdown)

* [Cloud Posture Security](https://www.paloaltonetworks.com/cortex/cloud/cloud-posture-security?ts=markdown)

* [Cloud Runtime Security](https://www.paloaltonetworks.com/cortex/cloud/runtime-security?ts=markdown)

* [Prisma Cloud](https://www.paloaltonetworks.com/prisma/cloud?ts=markdown)

* [AI-Driven SOC](https://www.paloaltonetworks.com/cortex?ts=markdown)

* [Cortex XSIAM](https://www.paloaltonetworks.com/cortex/cortex-xsiam?ts=markdown)

* [Cortex XDR](https://www.paloaltonetworks.com/cortex/cortex-xdr?ts=markdown)

* [Cortex XSOAR](https://www.paloaltonetworks.com/cortex/cortex-xsoar?ts=markdown)

* [Cortex Xpanse](https://www.paloaltonetworks.com/cortex/cortex-xpanse?ts=markdown)

* [Unit 42 Managed Detection \& Response](https://www.paloaltonetworks.com/cortex/managed-detection-and-response?ts=markdown)

* [Managed XSIAM](https://www.paloaltonetworks.com/cortex/managed-xsiam?ts=markdown)

* [Threat Intel and Incident Response Services](https://www.paloaltonetworks.com/unit42?ts=markdown)

* [Proactive Assessments](https://www.paloaltonetworks.com/unit42/assess?ts=markdown)

* [Incident Response](https://www.paloaltonetworks.com/unit42/respond?ts=markdown)

* [Transform Your Security Strategy](https://www.paloaltonetworks.com/unit42/transform?ts=markdown)

* [Discover Threat Intelligence](https://www.paloaltonetworks.com/unit42/threat-intelligence-partners?ts=markdown)

## Company

* [About Us](https://www.paloaltonetworks.com/about-us?ts=markdown)
* [Careers](https://jobs.paloaltonetworks.com/en/)
* [Contact Us](https://www.paloaltonetworks.com/company/contact-sales?ts=markdown)
* [Corporate Responsibility](https://www.paloaltonetworks.com/about-us/corporate-responsibility?ts=markdown)
* [Customers](https://www.paloaltonetworks.com/customers?ts=markdown)
* [Investor Relations](https://investors.paloaltonetworks.com/)
* [Location](https://www.paloaltonetworks.com/about-us/locations?ts=markdown)
* [Newsroom](https://www.paloaltonetworks.com/company/newsroom?ts=markdown)

## Popular Links

* [Blog](https://www.paloaltonetworks.com/blog/?ts=markdown)
* [Communities](https://www.paloaltonetworks.com/communities?ts=markdown)
* [Content Library](https://www.paloaltonetworks.com/resources?ts=markdown)
* [Cyberpedia](https://www.paloaltonetworks.com/cyberpedia?ts=markdown)
* [Event Center](https://events.paloaltonetworks.com/)
* [Manage Email Preferences](https://start.paloaltonetworks.com/preference-center)
* [Products A-Z](https://www.paloaltonetworks.com/products/products-a-z?ts=markdown)
* [Product Certifications](https://www.paloaltonetworks.com/legal-notices/trust-center/compliance?ts=markdown)
* [Report a Vulnerability](https://www.paloaltonetworks.com/security-disclosure?ts=markdown)
* [Sitemap](https://www.paloaltonetworks.com/sitemap?ts=markdown)
* [Tech Docs](https://docs.paloaltonetworks.com/)
* [Unit 42](https://unit42.paloaltonetworks.com/)
* [Do Not Sell or Share My Personal Information](https://panwedd.exterro.net/portal/dsar.htm?target=panwedd)
  ![PAN logo](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/pan-logo-dark.svg)
* [Privacy](https://www.paloaltonetworks.com/legal-notices/privacy?ts=markdown)
* [Trust Center](https://www.paloaltonetworks.com/legal-notices/trust-center?ts=markdown)
* [Terms of Use](https://www.paloaltonetworks.com/legal-notices/terms-of-use?ts=markdown)
* [Documents](https://www.paloaltonetworks.com/legal?ts=markdown)

Copyright © 2026 Palo Alto Networks. All Rights Reserved

* [![Youtube](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/youtube-black.svg)](https://www.youtube.com/user/paloaltonetworks)
* [![Podcast](https://www.paloaltonetworks.com/content/dam/pan/en_US/images/icons/podcast.svg)](https://www.paloaltonetworks.com/podcasts/threat-vector?ts=markdown)
* [![Facebook](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/facebook-black.svg)](https://www.facebook.com/PaloAltoNetworks/)
* [![LinkedIn](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/linkedin-black.svg)](https://www.linkedin.com/company/palo-alto-networks)
* [![Twitter](https://www.paloaltonetworks.com/etc/clientlibs/clean/imgs/social/twitter-x-black.svg)](https://twitter.com/PaloAltoNtwks)
* EN  
  Select your language