OpenAI publishes Frontier Governance Framework aligned to California SB 53 and EU AI Act

OpenAI's new document maps its internal safety practices to the two regulatory regimes that will govern frontier model developers starting this year.

OpenAI on May 29 published its Frontier Governance Framework, a public document explaining how its safety and security practices map to California's Transparency in Frontier AI Act (SB 53) and the EU AI Act's Code of Practice for General Purpose AI. The framework covers risk assessment across cyber offense, CBRN risks, harmful manipulation, and loss-of-control scenarios — plus model reporting, security risk management, incident response, and external expert input.

The publication is significant because SB 53 — signed by Governor Newsom in September 2025 — requires large frontier developers to publish an annual framework explaining how they identify, mitigate, and govern catastrophic risks. OpenAI is the first major lab to ship a unified document that explicitly satisfies both the California requirement and the EU Code of Practice signed by OpenAI, Anthropic, Google, and xAI.

Pressure now shifts to the other signatories. Anthropic, Google DeepMind, and xAI all face the same SB 53 reporting clock and the same EU Code of Practice obligations, and California regulators begin enforcement of the transparency rule this year. Expect comparable documents from each over the next few weeks — and expect them to look broadly similar in structure, because all four labs are mapping to the same statutory categories.

Takeaway for learners: read the framework directly. It is one of the clearest public statements of what a frontier lab considers a serious AI risk and what process they use to evaluate it before release. For anyone studying AI policy or safety, primary documents like this are worth more than ten thinkpieces about them — and they will become the baseline literature for the field over the next year.