d27026fda7
Merge branch 'OWASP:main' into main
2025-07-25 20:30:56 +02:00
0dd87354da
1. Specified that temperature=0 does not imply reproducibility ( https://arxiv.org/pdf/2506.09501 )
...
2. Pointed out that LLMs are generally less secure in low-resource languages
3. Made some order on the payloads for the bias test, now it using always the same base example.
2025-07-25 20:26:32 +02:00
897c532bba
+ Planning instructions to avoid issues with token consumption
2025-07-25 12:18:11 +02:00
9da16a16c1
Correction of the readme to refer to the correct changed test
2025-07-17 15:22:07 +02:00
977235af4d
Introduction of the AITG-APP-10_Testing_for_Content_Bias.md, with tests to detect biased decisions made by the AI System.
2025-07-17 15:16:22 +02:00
49ee4b9d6c
The unsafe output test now includes hate releated unsafe content as part of the tests.
...
AITG-APP-10_Testing_for_Harmful_Content_Bias.md replaced with AITG-APP-10_Testing_for_Content_Bias.md, and now it focuses on the detection of biases contened in the generated outputs.
2025-07-17 15:14:33 +02:00
82b7a18ef4
README updated
2025-07-14 08:19:58 +02:00
2b16a5c5f3
+ Testing Limitations and Requirements
2025-07-13 11:21:09 +02:00
71b4f26900
Merge pull request #20 from fedric95/main
2025-07-12 21:30:58 +04:00
198167aebe
- Introduced the necessity of defining a safety taxonomy before conducting the tests: the definition of what is safe and what is unsafe depends on the application.
...
- Linked an existing safety taxonomy
- Added examples of moderation models
- Removed most of the references to the concept of bias. They should be addressed in another test.
TO-DO
- Include tests that consider the potential multimodal nature of the application (right now it is more text-only)
- Make a specific test to evaluate the biases of the AI application under test and remove all the references to biases in this test
2025-07-12 19:12:00 +02:00
5dbedf3dc3
Prompt Injection Techniques section addeded
2025-07-12 13:51:10 +02:00
5a434e776b
Update in typo tricks
2025-07-12 12:35:05 +02:00
a56ba3f4e6
+ Echo Chamber Attack
2025-07-12 12:24:58 +02:00
b483d240cf
+ AntiGPT reference
2025-07-12 11:53:03 +02:00
abfcbde568
+ AntiGPT Prompt Injection
2025-07-12 11:49:27 +02:00
250ead1ffc
Update 2.1_Identify_AI_Threats.md
...
Re-aligned all references and links
2025-07-09 11:38:48 -04:00
f821459f13
Update 2.1_Identify_AI_Threats.md
...
Reference more specialized taxonomies like the one developed by Pangea
2025-07-09 10:18:43 -04:00
5fef43e31f
Update References.md
...
Added ref [23] to PJI taxonomy
2025-07-09 09:55:52 -04:00
2c6a41ef75
Update 2.1_Identify_AI_Threats.md
...
Add note on risk
2025-07-08 18:17:12 -04:00
84c9c7c989
Testing small edits
2025-06-30 15:36:22 -04:00
e754867dd5
fixing typos in multiple texts.
2025-06-29 13:48:42 +02:00
b03267133e
Update 2.2_Appendix_B.md
...
fixed #8
2025-06-26 15:12:53 -03:00
a50c0ceb65
Fix copy/paste error in AITG-INF-02
2025-06-26 18:36:36 +02:00
d390fa1605
Add some attack vectors and some additional notes to AITG-INF-02
2025-06-26 18:29:32 +02:00
77ebe9e3b5
Add prompt disclosure techniques
2025-06-26 16:42:50 +02:00
15218fd5cb
Add direct tool invocation sections
2025-06-26 16:42:37 +02:00
29c2bcfeca
Add XSS attack vectors
2025-06-26 16:42:21 +02:00
249ab5fb84
Add some data leaks related to tool list and reasoning
2025-06-26 16:42:11 +02:00
25fc713549
Added some prompt injection techniques
2025-06-26 16:41:44 +02:00
0a93f78ebd
Add EchoLeak technique to indirect prompt injection testing
...
- Added Reference-Style Markdown Injection (EchoLeak Technique) section
- Included real-world example with CVE-2025-32711 from Aim Security Labs
- Enhanced testing methodology for markdown-based data exfiltration attacks
2025-06-25 23:39:39 -05:00
392f1a10e8
docs: fix README spacing, prompt-injection typos, and meta tag property
2025-06-25 16:22:14 -04:00
743966aa74
Merge pull request #3 from SitaRamSai/fix/spelling-corrections-test-files
...
fix: correct spelling errors in test documentation files
2025-06-25 19:11:01 +02:00
a1f115010a
fix: correct spelling errors in test documentation files
...
- Fix 'system prompots' to 'system prompts' in AITG-APP-01
- Fix 'confidetial' to 'confidential' in AITG-APP-04
- Fix 'input.s.' to 'input.' in AITG-APP-04
- Fix 'esearch efforts' to 'Research efforts' in AITG-APP-07
- Fix 'How to test for Al' to 'How to test for AI' in AITG-APP-11
- Fix 'GaraK . PAckage Hallucionantion' to 'Garak - Package Hallucination' in AITG-INF-01
These corrections improve documentation quality and readability across the AI Testing Guide test specifications.
2025-06-25 11:59:29 -05:00
6f3a3dd951
Merge pull request #2 from julio-cfa/main
...
docs: edit AITG-APP-05 to add more test cases, replace links, and mention app security
2025-06-25 17:57:23 +02:00
b489a6fa1e
docs: fix four spelling errors in Domain-Specific Testing chapter
2025-06-24 11:46:43 -04:00
8e104d7419
Add more testing cases, replace links, mentiones to app security
2025-06-24 17:30:43 +02:00
51ce48e6f5
Update 1.2_Objectives_of_AI_Testing_Guide.md
2025-06-23 14:17:54 +02:00
6d21eef0cc
Update 1.2_Objectives_of_AI_Testing_Guide.md
2025-06-23 14:17:45 +02:00
03de5d0608
Update 1.1_Principles_of_AI_Testing.md
2025-06-23 14:17:30 +02:00
9afcc89e57
Update 2.2_Appendix_A.md
2025-06-18 12:06:56 +02:00
231987d00d
Update README.md
2025-06-18 12:06:26 +02:00
6266b29df5
Create 2.2_Appendix_D.md
2025-06-18 12:04:23 +02:00
d57d46526f
Create 2.2_Appendix_C.md
2025-06-18 12:03:27 +02:00
6f09fe16a8
Update 2.2_Appendix_A.md
2025-06-18 12:02:30 +02:00
55e43220f8
Create 2.2_Appendix_B.md
2025-06-18 12:02:16 +02:00
09eb8e1cc4
Create 2.2_Appendix_A.md
2025-06-18 12:00:39 +02:00
95da1a4b50
Update 2.1.2_Identify_RAI_threats.md
2025-06-18 11:57:19 +02:00
36649a80ca
Delete Document/content/tests/a.md
2025-06-18 11:53:41 +02:00
4abb579336
Update 4.0_Domain_Specific_Testing.md
2025-06-18 11:53:13 +02:00
8e6ace92ba
Update 4.0_Domain_Specific_Testing.md
2025-06-18 11:51:09 +02:00
fedric95