Summary
Add built-in test scenarios for RAG retrieval poisoning attacks to PyRIT's scenario library.
Problem
RAG systems are vulnerable to retrieval poisoning where malicious content is injected into the knowledge base. PyRIT currently lacks dedicated scenarios for testing this attack surface.
Proposed Implementation
- New file: pyrit/scenario/scenarios/rag_retrieval_poisoning.py
- Predefined attack vectors for retrieval poisoning
- Integration with existing attack executor
- Documentation in scenario docstrings
Use Case
Security teams can use these scenarios to test RAG-based LLM applications against known poisoning attack patterns.
References
Summary
Add built-in test scenarios for RAG retrieval poisoning attacks to PyRIT's scenario library.
Problem
RAG systems are vulnerable to retrieval poisoning where malicious content is injected into the knowledge base. PyRIT currently lacks dedicated scenarios for testing this attack surface.
Proposed Implementation
Use Case
Security teams can use these scenarios to test RAG-based LLM applications against known poisoning attack patterns.
References