promptfoo vs Giskard: Which One Covers More of the OWASP LLM Top 10 in 2026?
promptfoo and Giskard are both open-source AI Red Teaming tools, diffed on license, language, maintainer, and repository status as of 2026-07-13. Both fit teams evaluating ai red teaming; the real difference is language, maintenance activity, and scope — not feature count.
Sponsored Comparison — this slot is available to category sponsors. Paid placement does not alter the coverage data or verdict below.
Spec comparison
| Attribute | promptfoo | Giskard |
|---|---|---|
| Maintainer | Promptfoo (a subsidiary of OpenAI as of March 2026) | Giskard AI |
| License | MIT | Apache-2.0 |
| Language | TypeScript | Python |
| Status | Ownership changed | Active |
| Primary use | Prompt/agent/RAG testing and LLM red-teaming — vulnerability scanning, eval, and CI/CD security testing for AI applications | Open-source evaluation and testing library for LLM agents/RAG — detects hallucination, bias, prompt injection, and other quality/security issues |
Read the full profiles: promptfoo, Giskard.
Last verified . Sources: https://github.com/promptfoo/promptfoo, https://github.com/Giskard-AI/giskard-oss. Funding and repo figures are third-party and go stale. Re-verify before you rely on them.
Informational, not professional security advice — verify both projects' claims against OWASP, MITRE, and the maintainers directly before a decision. OWASP, MITRE, and the listed vendors and maintainers do not endorse llmthreat.com.