Methodology
How We Verify Prompt-Injection Vendor Pricing
Plain-text description of how pricing is collected, verified and dated. Vendor source URLs and the verified-on date are published on every page.
20
Vendors tracked
Vendor
Source of truth
Date
Stamp on every page
Never
Inferred for quote-only
Collection
- Vendor pricing pages, captured verbatim with URL and date.
- Vendor sales calls, only on the record, only if the rep confirms a number we can publish.
- Public references (court filings, S-1s, partner pages) for context only.
- OWASP genai.owasp.org for the LLM Top 10 attack taxonomy.
Verification cadence
- 1Initial captureURL + screenshot
- 2TriangulationCross-check vendor docs
- 3Stamp dateVerified-on field
- 4Quarterly re-verifyAll published rates
- 5Trigger re-pullOn any vendor news
What we will not do
- Infer a number for a quote-only vendor.
- Cite an industry average that is not anchored to a named published dataset.
- Carry a price past its verified-on date without re-pulling.
- Accept a vendor-supplied composite without a published primary source.
Sources we cite explicitly
- Every vendor pricing page URL is on the relevant vendor page.
- OWASP Top 10 for LLM Applications 2025 at genai.owasp.org.
- NIST AI 100-1 (AI RMF) and NIST AI 600-1 (Generative AI Profile).
- Regulation (EU) 2024/1689 (the EU AI Act).
Last verified June 2026Source: vendor pricing pages. See /methodology.